PROUTIL EPOLICY VIEW qualifier

Views the encryption policies for the specified database object, or the autostart or key store status.

Syntax


`proutil db-name -C epolicy view [ area area-name\| index index-name \| lob lob-name \| table table-name \| keystore \| autostart \| dbpolicy\| all][[-userid userid][-password password]]`

Parameters

db-name: Name of the database.
area area-name: Specifies to view the policies of the area-name area. You must specify a Type I area to view; you cannot view policies for a Type II area. Leave the parameter blank to view a summary of all Type I areas that have encryption specified.
index index-name: Specifies to view the policies of the index-name index. Leave the parameter blank to view a summary of all indexes that have encryption specified.
lob lob-name: Specifies to view the policies of the lob-name lob. Leave the parameter blank to view a summary of all lobs that have encryption specified.
table table-name: Specifies to view the policies of the table-name table. Leave the parameter blank to view a summary of all tables that have encryption specified.
keystore: Specifies to view the key store settings.
autostart: Specifies to view the current autostart settings.
dbpolicy: Specifies to view the database master key's security policy.
all: Specifies to view all information displayed by the area, index, lob, table, and dbpolicy parameters. It also displays any AI and BI encryption policies.
-userid userid -password password: Specifies the userid and password of an authenticated Database Administrator.

When you specify a database object (area, index, table, lob) EPOLICY VIEW reports on the encryption policy status of the object, including the current and previous policies (if it exists).

When you specify the key store, EPOLICY VIEW reports on the state of the key store, including: key store version, key store creation date, key store update date, account status, and information about the database master key.

When you specify autostart, EPOLICY VIEW reports on the current autostart setting.

EPOLICY VIEW requires Database Administrator and key store administrator privileges.

An example of EPOLICY VIEW output for various parameters follows:

proutil crypt -C epolicy view area "ASA1 Area" AREA ASA1 Area / 16 CURRENT AES_CBC_128 V:1 # proutil crypt -C epolicy view area AREA ASA1 Area / 16 CURRENT AES_CBC_128 V:1 AREA ASA2 Area / 21 CURRENT AES_CBC_256 V:1 # proutil crypt -C epolicy view index INDEX PUB.EncAbl1.charge_ctrlnum / 188 CURRENT AES_CBC_192 V:0 INDEX PUB.EncAbl1.acctnumb / 189 CURRENT AES_CBC_256 V:0 INDEX PUB.EncAbl1.date_add_appr_seq_no / 191 CURRENT DES3_CBC_168 V:0 INDEX PUB.EncAbl1.parent_chg_ctrlnum / 192 CURRENT AES_CBC_128 V:0 INDEX PUB.EncAbl1.req_amount / 193 CURRENT AES_CBC_192 V:0 # proutil crypt -C epolicy view lob LOB PUB.1AATYPE2AREA.1AATYPE2AREA / 13 CURRENT AES_CBC_256 V:1 LOB PUB.2BBTYPE2AREA.2BBTYPE2AREA / 14 CURRENT AES_CBC_128 V:1 # proutil crypt -C epolicy view table TABLE PUB.EncAbl1 / 33 CURRENT AES_CBC_128 V:0 TABLE PUB.EncAbl10 / 34 CURRENT AES_CBC_256 V:0 TABLE PUB.EncAbl11 / 35 CURRENT AES_CBC_256 V:0 TABLE PUB.EncAbl12 / 36 CURRENT AES_CBC_192 V:0 TABLE PUB.EncAbl13 / 37 CURRENT AES_CBC_192 V:0 TABLE PUB.EncAbl14 / 38 CURRENT AES_CBC_128 V:0 # proutil crypt -C epolicy view keystore Keystore version : 2 Keystore created : 07.02.2019 16:47 GMT Keystore updated : 07.02.2019 16:47 GMT Administrator account valid : True User account valid : True DMK valid : True DMK id : 27zawVlc5I7eEShnMGqdAw DMK state : Active DMK created : 07.02.2019 16:47 GMT DMK updated : 07.02.2019 16:47 GMT DMK cipher : AES_CBC_128 DBCtx valid : True DBCtx DB id : 27zawVlc5I7eEShnykmXAw DBCtx DB policy id : 27zawVlc5I7eEShnSMacAw DBCtx DMK cipher : AES_CBC_128 DBCtx DMK id : 27zawVlc5I7eEShnMGqdAw

proutil crypt -C epolicy view area "ASA1 Area"

AREA ASA1 Area / 16 CURRENT AES_CBC_128 V:1

#

proutil crypt -C epolicy view area

AREA ASA1 Area / 16 CURRENT AES_CBC_128 V:1
AREA ASA2 Area / 21 CURRENT AES_CBC_256 V:1

#

proutil crypt -C epolicy view index

INDEX PUB.EncAbl1.charge_ctrlnum / 188 CURRENT AES_CBC_192 V:0
INDEX PUB.EncAbl1.acctnumb / 189 CURRENT AES_CBC_256 V:0
INDEX PUB.EncAbl1.date_add_appr_seq_no / 191 CURRENT DES3_CBC_168 V:0
INDEX PUB.EncAbl1.parent_chg_ctrlnum / 192 CURRENT AES_CBC_128 V:0
INDEX PUB.EncAbl1.req_amount / 193 CURRENT AES_CBC_192 V:0 

#

proutil crypt -C epolicy view lob

LOB PUB.1AATYPE2AREA.1AATYPE2AREA / 13 CURRENT AES_CBC_256 V:1
LOB PUB.2BBTYPE2AREA.2BBTYPE2AREA / 14 CURRENT AES_CBC_128 V:1

#

proutil crypt -C epolicy view table

TABLE PUB.EncAbl1 / 33 CURRENT AES_CBC_128 V:0
TABLE PUB.EncAbl10 / 34 CURRENT AES_CBC_256 V:0
TABLE PUB.EncAbl11 / 35 CURRENT AES_CBC_256 V:0
TABLE PUB.EncAbl12 / 36 CURRENT AES_CBC_192 V:0
TABLE PUB.EncAbl13 / 37 CURRENT AES_CBC_192 V:0
TABLE PUB.EncAbl14 / 38 CURRENT AES_CBC_128 V:0

#

proutil crypt -C epolicy view keystore

Keystore version : 2
Keystore created : 07.02.2019 16:47 GMT
Keystore updated : 07.02.2019 16:47 GMT
Administrator account valid : True
User account valid : True
DMK valid : True
DMK id : 27zawVlc5I7eEShnMGqdAw
DMK state : Active
DMK created : 07.02.2019 16:47 GMT
DMK updated : 07.02.2019 16:47 GMT
DMK cipher : AES_CBC_128
DBCtx valid : True
DBCtx DB id : 27zawVlc5I7eEShnykmXAw
DBCtx DB policy id : 27zawVlc5I7eEShnSMacAw
DBCtx DMK cipher : AES_CBC_128
DBCtx DMK id : 27zawVlc5I7eEShnMGqdAw

Manage the OpenEdge Database