Invoking an encryption parameters file in concsm.cfg

You can configure encryption options by setting encryption parameters in a file and then invoking it in the concsm.cfg file.

In the encryption parameters file that you specify in the concsm.cfg file, each option has the following form: 
PARAMETER_NAME value

Use the following parameters to set encryption options:

  • ENCCSM_CIPHERS: Ciphers to be used
  • ENCCSM_MAC: MAC levels
  • ENCCSM_MACFILES: MAC file locations
  • ENCCSM_SWITCH: Cipher and key change frequency

The following rules apply to the parameter values:

  • Each entry must be of the form PARAMATER_NAME value separated by white spaces (for example, ENCCSM_MAC medium,high and ENCCSM_MACFILES /usr/local/bin/mac1.dat,/usr/local/bin/mac2.dat,builtin).
    Note: White spaces are not allowed within a value.
  • Each parameter must have one entry in the configuration file. If multiple entries exist, only the first entry is used.
  • Default values are used if a parameter does not exist in the configuration file.
  • Characters after a comment character (#) are ignored; however, the path name value is not ignored.
Parent topic: Network data encryption syntax
Related reference:
Specifying network encryption options in concsm.cfg
Copyright© 2020 HCL Technologies Limited