Page History
...
- Do not use passwords.
- Users frequently ask if JS7 can encrypt credentials. The answer is "no" as it makes no sense to handle a symmetric key that is in reach of the component that makes use of it. Encrypted passwords correspond to the "key under the mat", they do not provide additional security, however, they perfectly contribute to obfuscation.
- There is one way only how to securely handle passwords: not to use them.
- Use Integrated Security
- This authentication scheme is based on the fact that the account that a component is operated for is already authenticated and therefore can access a database without specifying user/password credentials.
- This feature is available for a number of DBMS such as
- Microsoft SQL Server®, see the JS7 - How to connect to an SQL Server with a domain account articledatabase without using passwords article.
- Oracle® that includes support for Oracle® Wallet, see the JS7 - How to connect to an Oracle database without using passwords article.
...
Overview
Content Tools