https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438982#M699927 <HTML><HEAD></HEAD><BODY><P>Depends on what you mean... </P><P></P><P>The XUser and XPassword parameters in the connection string are <EM><STRONG>not </STRONG></EM>encrypted. They are merely scrambled so that it is not possible to read the password when you look at someone else's screen. Obuscation - not encryption.</P><P></P><P>The credentials are passed to the ODBC driver (on the same computer) in clear text. </P><P></P><P>The ODBC driver in turn, sends the credentials to the RDBM server. This step can often be properly encrypted, but this is done by the ODBC driver, not by QlikView. So, look in the settings of your ODBC driver or OLEDB provider.</P><P></P><P>HIC</P></BODY></HTML> Fri, 16 Nov 2012 10:19:42 GMT hic 2012-11-16T10:19:42Z https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438981#M699926 <HTML><HEAD></HEAD><BODY><P>Hi, </P><P></P><P>Does anybody know wich type of encryption algorithm is used by Qlikview in ODBC strings? </P><P></P><P>I was reading the reference manual but I didn't found anything.</P><P></P><P>Thanks.</P><P></P><P>Leo.</P></BODY></HTML> Thu, 15 Nov 2012 18:27:18 GMT https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438981#M699926 leonardo_raed 2012-11-15T18:27:18Z https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438982#M699927 <HTML><HEAD></HEAD><BODY><P>Depends on what you mean... </P><P></P><P>The XUser and XPassword parameters in the connection string are <EM><STRONG>not </STRONG></EM>encrypted. They are merely scrambled so that it is not possible to read the password when you look at someone else's screen. Obuscation - not encryption.</P><P></P><P>The credentials are passed to the ODBC driver (on the same computer) in clear text. </P><P></P><P>The ODBC driver in turn, sends the credentials to the RDBM server. This step can often be properly encrypted, but this is done by the ODBC driver, not by QlikView. So, look in the settings of your ODBC driver or OLEDB provider.</P><P></P><P>HIC</P></BODY></HTML> Fri, 16 Nov 2012 10:19:42 GMT https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438982#M699927 hic 2012-11-16T10:19:42Z https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438983#M699928 <HTML><HEAD></HEAD><BODY><P><SPAN style="font-family: calibri,verdana,arial,sans-serif;">Good question Leonardo. I did some research on this area and found out that QlikView ODBC connection strings are stored in <SPAN style="color: #800000;"><STRONG>Base64 </STRONG></SPAN>Scrambling method. As suggested by HIC, you can control ODBC connection string encryption outside QlikView. And you have one more option of using VBScript with <A href="http://www.chilkatsoft.com/refdoc/xChilkatCrypt2Ref.html">ChilkatCrypt2</A> encryption component. I have not implemented it but this should work. </SPAN></P><P></P><P><SPAN style="font-family: calibri,verdana,arial,sans-serif;">HIC - Any plans in future versions to add the encryption? Not just ODBC connection string but I'm also concerned about Hidden Script Password...<BR /></SPAN></P><P></P><P><SPAN style="font-family: calibri,verdana,arial,sans-serif;">Thanks in advance.</SPAN></P><P></P><P><SPAN style="font-family: calibri,verdana,arial,sans-serif;">Cheers,</SPAN></P><P><SPAN style="font-family: calibri,verdana,arial,sans-serif;">DV</SPAN></P><P><A href="http://QlikShare.com"><BR /></A><A href="http://QlikShare.com"><SPAN style="font-family: calibri,verdana,arial,sans-serif;">www.QlikShare.com</SPAN></A></P></BODY></HTML> Sat, 24 Nov 2012 23:45:20 GMT https://community.qlik.com/t5/QlikView/User-and-password-encryption-in-odbc-string/m-p/438983#M699928 IAMDV 2012-11-24T23:45:20Z