Novell ACCESS MANAGER 3.1 SP1 - IDENTITY SERVER Manual page 81

"Configuring an eDirectory User Store to Use SecretStore" on page
If your user store is eDirectory and you have installed Novell SecretStore, you can select to use
the SecretStore on your eDirectory server to store the secrets.
Configuring the Configuration Datastore to Store the Secrets
When you use the configuration datastore of the Administration Console as the secret store, the
nidswsfss attribute of the nidsLibertyUserProfile object is used to store the secrets.
1 In the Administration Console, click Devices > Identity Servers > Servers > Edit > Liberty >
Web Service Providers.
2 Click Credential Profile.
3 Scroll to the Local Storage of Secrets section and configure the following security options:
Encryption Password Hash Key: (Required) Specify the password that you want to use as a
seed to create the encryption algorithm. To increase the security of the secrets, we recommend
that you change the default password to a unique alphanumeric value.
Preferred Encryption Method: Specify the preferred encryption method. Select the method
that complies with your security model:
Password Based Encryption With MD5 and DES: MD5 is an algorithm that is used to
verify data integrity. Data Encryption Standard (DES) is a widely used method of data
encryption that uses a private key.
84.
Configuring Local Authentication 81