Skip to main content

Qlik

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
leonardo_raed
Partner - Contributor III
Partner - Contributor III
‎2012-11-15 01:27 PM

User and password encryption in odbc string

Hi,

Does anybody know wich type of encryption algorithm is used by Qlikview in ODBC strings?

I was reading the reference manual but I didn't found anything.

Thanks.

Leo.

12,498 Views
0 Likes
1 Solution

Accepted Solutions
hic
Former Employee
Former Employee
‎2012-11-16 05:19 AM

Depends on what you mean...

The XUser and XPassword parameters in the connection string are not encrypted. They are merely scrambled so that it is not possible to read the password when you look at someone else's screen. Obuscation - not encryption.

The credentials are passed to the ODBC driver (on the same computer) in clear text.

The ODBC driver in turn, sends the credentials to the RDBM server. This step can often be properly encrypted, but this is done by the ODBC driver, not by QlikView. So, look in the settings of your ODBC driver or OLEDB provider.

HIC

View solution in original post

5,023 Views
2 Replies
hic
Former Employee
Former Employee
‎2012-11-16 05:19 AM

Depends on what you mean...

The XUser and XPassword parameters in the connection string are not encrypted. They are merely scrambled so that it is not possible to read the password when you look at someone else's screen. Obuscation - not encryption.

The credentials are passed to the ODBC driver (on the same computer) in clear text.

The ODBC driver in turn, sends the credentials to the RDBM server. This step can often be properly encrypted, but this is done by the ODBC driver, not by QlikView. So, look in the settings of your ODBC driver or OLEDB provider.

HIC

5,024 Views
IAMDV
Luminary Alumni
Luminary Alumni
‎2012-11-24 06:45 PM

Good question Leonardo. I did some research on this area and found out that QlikView ODBC connection strings are stored in Base64 Scrambling method. As suggested by HIC, you can control ODBC connection string encryption outside QlikView. And you have one more option of using VBScript with ChilkatCrypt2 encryption component. I have not implemented it but this should work.

HIC - Any plans in future versions to add the encryption? Not just ODBC connection string but I'm also concerned about Hidden Script Password...

Thanks in advance.

Cheers,

DV


www.QlikShare.com

5,023 Views