Skip to main content

Password encryption

Passwords in the configuration file must be encrypted. You can use the Snow Crypt 2 tool to encrypt the passwords before adding them to the configuration file. Note that passwords are automatically encrypted if you manage your configuration files using the Snow Inventory Admin Console.

Snow Crypt 2

Snow Crypt 2 is available for Windows and Linux and can be downloaded from this Flexera Community article: https://community.flexera.com/s/article/Snow-Crypt-2-Tool-Downloads .

The tool is executed from the command line in the directory where it is located. To encrypt a password, execute the tool and when prompted, enter the password as a string. The tool will display the encrypted password. Alternatively, you can provide the password as an argument to the tool in the form of a string or text file.

note

  • If you pass the password as an argument on the command line, instead of after the Enter password prompt, you must follow the rules of the shell environment and operating system, such as proper escaping of special characters. Otherwise, you will not get the expected result.

  • If you use a text file, make sure it contains nothing but the password, since all the contents of the file will be encrypted, including carriage returns and new lines.

EXAMPLE

Encrypting %[mysecretPassword123 on Windows:

C:\Mydirectory>snowcrypt2.exe
Enter password: %[mysecretPassword123
11ecbd8b08b89clk9234hhmv9334t9903b2802oj62bn499e450
EXAMPLE

Encrypting passwd.txt on Linux:

./snowcrypt2 < passwd.txt
11ecbd8b08b89clk9234hhmv9334t9903b2802oj62bn499e450
EXAMPLE

Encrypting a password from an environment variable on Linux using pipes:

echo -n ${ENV_VARIABLE} | ./snowcrypt2
11ecbd8b08b89clk9234hhmv9334t9903b2802oj62bn499e450