The interaction between replication and encryption on a database that is enabled for both is essentially transparent. However, there are some changes to the overall replication process due to the presence of encryption. Because of these changes, keep the following in mind:

  • Both the source and the target databases must be enabled for encryption and replication.
  • The Encryption Policy Area number for both databases must be identical.
  • BI and AI encryption for either database is optional.
  • If your replication-enabled database is also enabled for TDE and configured for manual start, you must specify the following to authenticate the keystore:
    • Specify -Passphrase each time the database is opened.
    • If the database is enabled for secondary authentication using an HSM, specify -Pin each time the database is opened.

For details about TDE and OpenEdge Replication, see Enable transparent data encryption for an OpenEdge Replication-enabled source database. For more information about TDE in general, see Manage the OpenEdge Database.