Hitachi

JP1 Version 13 JP1/Integrated Management 3 - Manager Overview and System Design Guide

3.15.10 Secret obfuscation function

Organization of this subsection

(1) Obfuscated object

The following secrets are subject to obfuscation:

#

In the OracleDB exporter included with the JP1/IM - Agent, the secret registered in the secret management file is obtained as a password without using the password in the environment variable DATA_SOURCE_NAME and is used to connect to Oracle Database.

In addition, the following items are not subject to obfuscation: Do not allow access with file permissions or restrict login users to prevent leakage.

#

The certificate and private key are required for encrypted communication between the manager host and agent host. For details, see 14.10.3(3) Encryption between manager host and agent host (JP1/IM - Agent).

To Page Top

(2) Adding, changing, or deleting a secret

You can set a secret in the following ways:

Setting method

Setting object

Set up a secret through the installer.

  • Proxy password for imagent

  • Initial secret of imagent

Use the secret management command to set the secret.

  • Proxy password for imagent

  • Initial secret of imagent

  • Client secret of imagent

  • Proxy password for Blackbox exporter

  • Password for Blackbox exporter monitored Web servers

  • Bearer tokens for Blackbox exporter monitored Web servers

  • Client secret of Promitor Resource Discovery

  • Client secret of Promitor Scraper

  • Passwords for accessing Oracle Database from OracleDB exporter

Set a secret using the [Manage Secret] dialogue of integrated operation viewer.

To Page Top

(3) Refer to the key list of stored secret

To check a stored secret, use the following procedure. You can retrieve a list of keys stored as secret. Displays only the keys. The secret is not displayed.

To Page Top

Copyright (C) 2023, 2024 Hitachi, Ltd.

Copyright (C) 2023, 2024 Hitachi Solutions, Ltd.