Preparation before using Forced Strong Key mode
When you use Forced Strong Key mode, the following conditions must be met:
-
HULFT Cipher Option (AES) is installed, and Encryption Scheme (ciphertype) is set to "1" (Other encryption scheme) in the System Environment Settings.
-
Forced Strong Key Mode (strongkeymode) is set to "1" (Enabled) in the System Environment Settings.
When a Product Key Update is performed, Forced Strong Key Mode (strongkeymode) is not changed automatically in the System Environment Settings. Therefore, when Forced Strong Key Mode (strongkeymode) is set to "1" (Enabled) in the System Environment Settings, HULFT might become unable to start after the update if you attempt to update HULFT with a product key that does not contain a HULFT Cipher Option (AES) license.
If you have removed or added a Cipher Option license from/to HULFT using a Product Key Update, Forced Strong Key Mode (strongkeymode) in the System Environment Settings must be changed accordingly to the change of your HULFT environment.
When you use Forced Strong Key mode
-
Check Forced Strong Key mode (strongkeymode) in the System Environment Settings.
If "0" (Disabled) is set, change it to "1" (Enabled).
-
Restart the resident daemons of HULFT.
When you do not use Forced Strong Key mode
-
Check Forced Strong Key mode (strongkeymode) in the System Environment Settings.
If "1" (Enabled) is set, change it to "0" (Disabled).
-
Restart the resident daemons of HULFT.
If "1" (Enabled) is set for Forced Strong Key Mode (strongkeymode) in the System Environment Settings but HULFT Cipher Option (AES) is not installed, HULFT becomes unable to start.
For details on the System Environment Settings and Forced Strong Key mode, refer to the following:
HULFT10 for Linux/AIX Administration Manual
For details on HULFT Cipher Option, refer to the following:
HULFT10 Cipher Option Manual :