订阅

UiPath Process Mining

The UiPath Process Mining Guide

设置凭据存储区

简介

The credential store provides a way to use passwords without exposing these to developers.

The server administrator is responsible for setting up the credential store and filling it with passwords. The server administrator should provide a list of available credentials to developers. These developers can use the identifier of a password.

There are two available ways to store passwords:

  • a json file on disk;
  • in the Azure Key Vault.

📘

注意

You can only use one of the methods simultaneously.

先决条件

An Azure environment should be available for Azure Key Vault.

Setting up a file-based credential store

The file-based credential store is a json file that resides on disk, called credential_store.json. This file must contain a single object, containing a set of key-value pairs, where:

  • key is the identifier that developers should use,
  • value contains the actual password.

Follow these steps to create a file-based credential store containing one password, with PasswordIdentifer as an identifier.

Step

Action

1

Create a new text file in the <PLATFORMDIR>\databases with the name credential_store.json.

2

Open credential_store.json using a text editor.

3

Enter the following information in the file:

{
"PasswordIdentifier": "s3cr3tp4ssw0rd"
}

4

Save the file.

5

Go to the Superadmin Settings tab.

6

Add the following entry to the Server settings:

"CredentialStore": {
"Type" : "File"
}

The identifier PasswordIdentifier can now be used by developers and, when used, will result in the password s3cr3tp4ssw0rd.

Below is an example of a credential_store.json file for a credential store with multiple passwords.

{
      "passwordIdentifier": "secr3tp4ssw0rd"
    , "ldapServerPassword": "BBx^W2Vh(7!r_>!%"
    , "oracleDatabasePassword": "~5u4$8HtCE>3mXpV"
    , ...
}

Setting up an encrypted file-based credential store

还可以创建基于文件的加密凭据存储。在本例中,您可以在“服务器设置”CredentialStore 条目中将“类型”设置为 Encrypted。只能使用 DataServer 命令 -AddEncryptedPassword 在加密凭据存储中添加条目。

-dataserver -AddEncryptedPassword <key> <password>

Follow these steps to create an encrypted file-based credential store containing one password, with PasswordIdentifer as an identifier.

Step

Action

1

Go to the Superadmin Settings tab.

2

Add the following entry to the Server settings:

"CredentialStore": {
"Type" : "Encrypted"
}

3

Open a Windows command line prompt and go to the <PLATFORMDIR>\builds folder.

4

Enter the following command:
processgold.bat -dataserver -AddEncryptedPassword PasswordIdentifier s3cr3tp4ssw0rd.

Added password entries cannot be removed.

📘

注意

The -AddEncryptedPassword command will overwrite existing password values without notification.

大约一年前更新

设置凭据存储区


建议的编辑仅限用于 API 参考页面

您只能建议对 Markdown 正文内容进行编辑,而不能建议对 API 规范进行编辑。