Hi All,
We have a requirement to store an account attribute in an identity attribute, but it must be encrypted once it’s in the identity attribute. Is there a way to create a cloud rule and have the cloud rule access the encryption keys for this? Thanks in advance.
This is not supported so it would be good if you encrypt before reaching ISC. And also I can say this not a best idea as well passing hashed values or encrypted.
Hi @mnisola0820
I would not recomend doing so as even if you have this attribute as encrypted value and then store it in ISC, still while provisioning to other applications or doing anything with this attribute, you will need to decrypt it or the target applications will have to have the ability to decrypt it.
I would suggest if you really want to store this information into ISC, then it needs to be encrypted in the source account level only and then whole architecture needs to be properly planned regarding how the other systems will handle this attribute.
I hope this helps.
Regards
Vikas.
This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.