Improvements to Security

Replication Server 15.7.1 introduces several improvements to password security administration and password encryption, and provides the ability to audit commands associated with configuration changes.

• Concealing Passwords During Input
  Use isql options to conceal a password as you type the password when you use alter user or create user.
• Password Policy Administration
  You can enforce requirements such as minimum length, mandatory character types, and an expiration period, for user passwords.
• Password Encryption
  Replication Server 15.7.1 changes the encryption algorithm for passwords and decrypts and encrypts all existing passwords according to the new algorithm, even if the existing passwords are encrypted . When you upgrade to Replication Server 15.7.1 and later, the change in encryption takes effect only after you set the site version to 1571 and later.
• Removal of Default Passwords for Replication Server Configuration
  With Replication Server 15.7.1, rs_init does not provide, suggest, construct, or use default passwords.
• sa User Password Reset
  You can reset the password for the sa user if you lose or forget the password.
• Command Auditing
  Enable command auditing for Replication Server to record information about users and commands that users enter at the Replication Server.
• System Table Support for Password Security
  To support password security, Replication Server uses the rs_passwords, rs_dictionary, and rs_encryptionkeys system tables and adds new columns to rs_users.
• Security Recommendations
  Recommendations for Replication Server security issues such as for performimg administrative tasks, SSL, encryption, permissions and roles, and the configuration file..