Try OpenEdge Now
skip to main content
Database Administration
Reference : PROUTIL Utility : PROUTIL EPOLICY MANAGE qualifier
 

PROUTIL EPOLICY MANAGE qualifier

Manages the encryption policies for the specified database object, or the autostart or key store status.

Syntax

proutil db-name -C epolicy manage
      [object-type {encrypt |cipher |rekey|update} object-name ]
     |[keystore {reconstruct |rebind |userphrase |adminprhase}]
     |[autostart { admin|user |disable}]
      [[-userid userid][-password password]]

Parameters

db-name
Name of the database.
object-type
Specifies the type of database object being managed. Valid object types are: area, index, lob, and table.
encrypt
Specifies that the action on the object is to encrypt the blocks.
cipher
Specifies that the action on the object is to change the cipher. You must have previously encrypted the object.
rekey
Specifies that the action on the object is to change the cipher key. You must have previously encrypted the object.
update
Specifies that the action on the object is to update all the blocks of the object. Update scans all the blocks in an object and updates the blocks to the current encryption policy.
object-name
Specifies the name of the object identified by object-type. For the object-type area, the object type must specify a Type I area. For all other object-type values, the specific object must reside in a Type II area.
keystore reconstruct
Specifies regeneration of the database key store. You are prompted for the database master key passphrase.
Only a key store with a database master key generated with the DES_CBC_PBE cipher can be reconstructed.
keystore rebind
Specifies to rebind a new database guid with database master policy after executing PROCOPY -newinstance. You are always prompted for the key store admin passphrase when running this command.
keystore userphrase
Specifies to change the key store user passphrase. You are prompted for the user passphrase. A blank passphrase is acceptable. The database must be in single-user mode to run this command.
keystore adminphrase
Specifies to change the key store admin passphrase. You are prompted for the admin passphrase. A blank passphrase is not acceptable. The database must be in single-user mode to run this command.
autostart user
Specifies that the database can be started in unattended mode with the key store user account.
autostart admin
Specifies that the database can be started in unattended mode with the key store admin account.
autostart disable
Specifies that the database cannot be started in unattended mode.
-userid userid -password password
Specifies the userid and password of an authenticated database administrator.
-Passphrase
Specifies that the user must be prompted for the key store administrator passphrase to authenticate the key store before running this command.

Notes

*Operations on areas must be performed while the database is offline.
*For details on Transparent Data Encryption, see Transparent Data Encryption and OpenEdge Getting Started: Core Business Services - Security and Auditing.