topic Automation for src/tgt connection passwords in Qlik Replicate

Automation for src/tgt connection passwords

sha1985 — Thu, 09 Nov 2023 18:56:56 GMT

we do have source connections established for oracle and sql server to replicate the data. want to know about the best possible solutions to update the passwords automatically in our source connections. All our service account credentials information is residing in Delinea secret server . Any potential solutions for automatic password updates.

Re: Automation for src/tgt connection passwords

Steve_Nguyen — Thu, 09 Nov 2023 20:32:40 GMT

@sha1985 i assume you are using Qlik Replicate, and if you have QEM monitor replicate :

see endpoint update/change

https://help.qlik.com/en-US/replicate/May2023/Content/Global_Common/Content/SharedEMReplicate/Design%20Tasks/tasks_makeChangestoDBConn.htm

Re: Automation for src/tgt connection passwords

Heinvandenheuvel — Thu, 09 Nov 2023 20:58:08 GMT

To example on the good reference @Steve_Nguyen provided you may also want to know that you can (re)import just a modified 'databases' section for all modified Replicate Endpoint definitions grabbed out of Export Repository with REPCTL or ExportAll with the AEM API

This all assumes you can get a clear text password in a script from the Delinea secret server

One other thing you might want to consider is to NOT have a known password through the "replace:your_password" password syntax. This requires a one-time known password and after that Replicate uses its own generated, secret, hashed password which cannot be exported (but does go over the wire to the DB of course). It implies a dedicated account (username) for Replicate to use which is a desirable thing anyway (except during advanced troubleshooting). There would be no need to store or change that password outside Replicate. In the manual described under: "4.5 Configuring Replicate to automatically replace the
user-entered password"

Hein.