Changing the Encryption Suite and Version Compatibility - System Administration - Cloud - Foundation 23.1 - Foundation 23.1 - Ready - OnBase - Essential - Premier - Standard - external - Standard - Premier - Essential

Cloud System Administration

Platform
OnBase
Product
System Administration - Cloud
Release
Foundation 23.1
License
Standard
Premier
Essential

The encryption algorithms used by OnBase may change between different versions of the software. The Cryptography Settings dialog box allows you to define the minimum version of OnBase to ensure compatibility between encryption algorithms in mixed-version environments. You can also enforce a specific encryption suite to use in OnBase, which may affect the algorithms used or available for use.

Note:

The Cryptography Settings do not affect the encryption method used by Encrypted Disk Groups or Encrypted Alpha Keyword Types, but certain settings may affect which method of encryption to use for those elements of your solution. See Cryptography Settings Additional Considerations.

Changes to the encryption suite and version compatibility used by OnBase are made in the Cryptography Settings dialog box. In order to access the Cryptography Settings dialog box, the user logged in must have the following rights:

  • System Configuration configuration right (under General Settings)

  • Database Management product right (under Configuration)

To change the encryption suite used by OnBase and set the minimum version all clients must be upgraded to:

  1. Select Utils | Cryptography from the OnBase Configuration module. The Cryptography Settings dialog box is displayed.
  2. Select an encryption suite from the Encryption Suite drop-down list:
    • Unrestricted: OnBase is not restricted to a specific standard of encryption.

    • FIPS 140-2: OnBase is restricted to using the FIPS 140-2 standard of encryption in modules that align with that standard. Modules that do not align with the FIPS 140-2 standard are encrypted as if Unrestricted is selected. For details on how FIPS 140-2 is enforced in OnBase, see the FIPS 140-2 Implementation Guide available from your first line of support.

      Note:

      Selecting FIPS 140-2 requires that the Version Compatibility setting be Version 18 or newer. It may also require other areas of OnBase to be configured in a way that aligns with FIPS 140-2 standards. See Cryptography Settings Additional Considerations.

  3. Select a version of OnBase from the Version Compatibility drop-down list. This is the minimum version of OnBase that all clients must be upgraded to.
    Note:

    Encryption Suite settings other than Unrestricted may have a minimum required Version Compatibility setting that must be set.

  4. Click OK to save your changes.
    CAUTION:

    In some cases, the Version Compatibility setting cannot be reverted to an earlier version after it is saved. Be sure to carefully read any prompts that are displayed to ensure the changes to your system are acceptable before you save them.

To analyze and convert the data affected by the cryptography settings saved, click Analyze Data. See Analyzing and Converting the Data Affected.

Note:

You cannot analyze and convert the data before saving your cryptography settings.