This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Obfuscating the Sophos Database Enterprise Console password in the registry

Sophos provide a small executable file entitled "ObfuscationUtil_40.exe" which, when copied to the appropriate directory on the host computer, will generate a string that can be substituted for the Enterprise Console database password. By default, the password is shown in the clear in the registry. To obfuscate the password copy the ObfuscationUtil_40 file to c:\program files\sophos\Enterprise Console and, from the command prompt, run obfuscationutil_40.exe --obfuscate {password} -w. A string will be output on the monitor. Copy and paste the output from the command prompt window to notepad then highlight the string and copy and paste this data into the registry as follows:-

run regedit
navigate to HKEY_LOCAL_MACHINE
SOFTWARE
SOPHOS
EE
DatabaseUser

delete the displayed password and paste in the obfuscation string.

Whilst still in the registry, go to UseClearText, and change the value from 1 to 0

Test the change by going to Services and re-start the Sophos Management Service. If the changes have worked the service will re-start without error

This thread was automatically locked due to age.

0 MarkT over 14 years ago

You may also want to look at the following article: http://www.sophos.com/support/knowledgebase/article/13094.html
Which gives information on running the tool, the location for the tool is by default c:\sec_xx\tools where xx is the console version you have installed, ie 31
:5599
Cancel
Vote Up 0 Vote Down

Cancel