Activating configuration encryption

About this task

Activate configuration encryption to automatically or manually encrypt sensitive configuration values. Reactivate encryption configuration if it was temporarily deactivated. For more, see Encrypting sensitive configuration values.


  1. Locate the opscenterd.conf file. The location of this file depends on the type of installation:

    • Package installations: /etc/opscenter/opscenterd.conf

    • Tarball installations: install_location/conf/opscenterd.conf

  2. Open opscenterd.conf for editing.

  3. In the [security] section, set the config_encryption_active option to True:

    config_encryption_active = True

    Restriction: Lifecycle Manager (LCM) is not compatible when config_encryption_active is true in DSE and OpsCenter. For LCM limitations, see Encrypted DSE configuration values.

  4. Restart opscenterd.