You must obfuscate the keys and passwords configured in ase.conf, cluster.conf, and abs.conf in the config directory.
ASE ships with a default ase_master.key, which is used to obfuscate the various keys and passwords. It is recommended to generate your own ase_master.key.
The following keys and passwords are obfuscated in the three configuration files:
- ase.conf: Email and key store (PKCS#12) password
- cluster.conf: ABS access and secret key
- abs.conf: Cluster authentication key,
gateway_credential
The new ase_master.key is used to obfuscate the keys and passwords in the various configuration files.
During the process of obfuscating keys and passwords, ASE must be stopped.
The following diagram summarizes the obfuscation process:
After the keys and passwords are obfuscated, the ase_master.key must be moved to a secure location from ASE.