Step 4: Determining if you will be replicating an encryption-enabled database
OpenEdge allows you to enable transparent data encryption for a database that is enabled for replication, and also enable replication for a database that is enabled for transparent data encryption.
For replication and encryption to work together smoothly, the following requirements exist:
Transparent data encryption must be enabled for both the source and target databases.
The enablement of transparent data encryption on the target database is driven by the source database, either by the normal replication process or by creating or recreating the target database from a transparent data encryption-enabled source database.
You cannot enable before-image encryption on the target database without recreating the target database from the source database.
Before-image encryption is not automatically enabled when transparent data encryption is enabled online for a source database; however, it is automatically enabled when transparent data encryption is enabled offline.
After-image encryption is automatically enabled for a source database when transparent data encryption is enabled either online or offline. If after-imaging is active on the target, after-image encryption will automatically be enabled on the target by the Replication agent when transparent data encryption is enabled.
The before-image and after-image encryption policies can differ between the source and the target databases. For example, the source can be enabled for before-image encryption, but the target is not required to be enabled.
Transparent data encryption must be enabled for both the source and target databases.
