Enabling Advanced Encryption Support

Follow these steps to enable advanced encryption support:

1. When Advanced Encryption is enabled, c-treeACE prompts for a master password at server startup. Run the ctcpvf utility to generate an encrypted password for use when launching the Advanced Encryption enabled Server. This will generate the file ctsrvr.pvf.

   Note: Developers can use the c-treeACE SDK to replace this prompt with an application-specific method of retrieving the master password.

2. To enable Advanced Encryption, place the following keyword in the ctsrvr.cfg configuration file prior to launching:

   ADVANCED_ENCRYPTION YES

   

   ADVANCED_ENCRYPTION < YES | NO >

   When Advanced Encryption is enabled, c-treeACE prompts for a master password at server startup. Run the ctcpvf utility to generate an encrypted password for use when launching the Advanced Encryption enabled Server. This will generate the file ctsrvr.pvf.

   Note: Developers can use the c-treeACE SDK to replace this prompt with an application-specific method of retrieving the master password.

   Any time you change the advanced encryption setting, you should delete the FAIRCOM.FCS file (which contains user and group information) before restarting c-treeACE as user and group information is encrypted for protection as well. All user and group information must be recreated if the FAIRCOM.FCS file is deleted.

   Client implementation of Advanced Encryption is accomplished through the use of the SetEncryption() function. Refer to the c-tree Plus Function Reference Guide for details on this function.

   Default: NO

   Important: Advanced Encryption is disabled by default. Any time you change the advanced encryption setting, you should delete the FAIRCOM.FCS file (which contains user and group information) before restarting c-treeACE as user and group information is encrypted for protection as well. All user and group information must be recreated if the FAIRCOM.FCS file is deleted.