I want to understand how Powershell Studio protects the username and password provided in the Alternate Credentials section. I assume the data is encrypted.
I want to use an admin account to impersonate, but I need to ensure our security team that the credentials are protected and secure.
Is there any information on this?
Alternate Credentials
Forum rules
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.
Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
DO NOT POST LICENSE NUMBERS, ACTIVATION KEYS OR ANY OTHER LICENSING INFORMATION IN THIS FORUM.
Only the original author and our tech personnel can reply to a topic that is created in this forum. If you find a topic that relates to an issue you are having, please create a new topic and reference the other in your post.
Any code longer than three lines should be added as code using the 'Select Code' dropdown menu or attached as a file.
- Alexander Riedel
- Posts: 8479
- Last visit: Thu Mar 28, 2024 9:29 am
- Been upvoted: 37 times
Re: Alternate Credentials
Yes, it is stored encrypted (AES). The functionality was never meant to add a layer of security to your systems or environment. These concerns are for you to decide based on your needs.It works to keep a casual observer away but it will not keep a determined person with a system level debugger away from your credentials.
As a general rule, credentials should not be stored. You should consider entering them when needed.
This somewhat old but still relevant blog post may interest you:
https://www.sapien.com/blog/2012/04/30/ ... -packages/
Not knowing what your OS is, this may be of interest for you too:
https://www.sapien.com/blog/2017/01/19/ ... nistrator/
As a general rule, credentials should not be stored. You should consider entering them when needed.
This somewhat old but still relevant blog post may interest you:
https://www.sapien.com/blog/2012/04/30/ ... -packages/
Not knowing what your OS is, this may be of interest for you too:
https://www.sapien.com/blog/2017/01/19/ ... nistrator/
Alexander Riedel
SAPIEN Technologies, Inc.
SAPIEN Technologies, Inc.