Secure External Passwords and Hidden Text

SAP ASE provides strong encryption for external login passwords and hidden text, using the AES-256 symmetric encryption algorithm.

You may choose strong encryption for external passwords to:

Replication Agents – replicated databases.
CIS – remote descriptors and logins.
Job Scheduler – Job Scheduler Agent.
RTMS – real-time messaging.
Secure Sockets Layer (SSL) and Lightweight Directory Access Protocol (LDAP) – SSL and LDAP access accounts. Passwords are administered using stored procedures sp_ldapadmin and sp_ssladmin can be secured.

Objects that have SQL text stored in syscomments, such as stored procedures, user-defined functions and computed columns can be optionally encrypted with strong encryption using sp_hidetext.

Note: Encrypting external passwords and hidden text requires the ASE_ENCRYPTION license.

Service Keys
Service keys are 256-bit, persistent encryption keys used to strongly encrypt external login passwords and hidden text, and are stored in sysencryptkeys.
Service Keys Encrypted with the Master Key
If your service keys are encrypted with the master key, the master key’s password must be entered into SAP ASE, either automatically or manually, depending on how you specify the master key.