Software components communicate over TCP connections by using the Remote API. Clients who are using Remote API connections, authenticate themselves to servers by sending credentials, normally a username and password. When the credentials are passed as cleartext, they can be snooped from the network or accessed by using man-in-the-middle configurations.
You can encrypt certain connections by using different keys for the Advanced Encryption Standard based on a combination of the Diffie Helman standard and the site secret associated with the installation.
Encrypted connections do not work with the following products:
- Perl API
- Smart Assurance Adapter for NetIQ AppManager