Software components communicate over TCP connections by using the Remote API. Clients who are using Remote API connections, authenticate themselves to servers by sending credentials, normally a username and password. When the credentials are passed as cleartext, they can be snooped from the network or accessed by using man-in-the-middle configurations.

You can encrypt certain connections by using different keys for the Advanced Encryption Standard based on a combination of the Diffie Helman standard and the site secret associated with the installation.

Encrypted connections do not work with the following products:

  • Perl API
  • Smart Assurance Adapter for NetIQ AppManager