Forum Discussion
Mazen2006_14317
Nimbostratus
Nimbostratuscrypt password in icontrol
Hello,
I need to know if i can have the password crypted in the icontrol code? is there any function crypt/decrypt that i can use so the team which manage iControl API can't know the password?
For example:
iControl.Interfaces interfaces = new iControl.Interfaces()
if ( interfaces.initialize(bigip, port, user, decrypt_function(crypted_password) instead of pass in clear) ) {
????
Advice please!3 Replies
Mazen2006_14317Anyone can answer me please? Is there aany function (crypt/decrypt) that we can use in icontrol? I don't want to put the password in clear in my icontrol API: iControl.Interfaces interfaces = new iControl.Interfaces() if ( interfaces.initialize(bigip, port, ***user, pass***))
arjunnambiartc_This really is not a Icontrol feature but depends on the language that you choose..the username and password can be variables that can be read at runtime so that you don't have to store them in clear text in your files..
As @arjunnambiartc mentioned above, encrypting the passwords is something we've left up to the client developers. There are several options if you don't want your client app to require the user to login. We've seen customers build authentication stores (locally or in a db) that store the bigip management address along with credentials. The client app authenticates that user to the auth store and then pulls down encrypted values of the credentials, decrypts them, and then passes them to the BIG-IP for initialization. iControl is build on top of the BIG-IP's management GUI interface. Right now the only authentication we support is basic authentication with username and password.
