Enabling EUA and Performing Encryption on an Existing Database

Go Up to Encrypting a Database with IBConsole

To enable EUA and perform encryption on an existing database, take the following steps:

1. Connect to the database you want to encrypt as the owner.
2. In the left pane, right-click on the database name and select Properties from the context menu or select Database > Properties from the menu.
3. In the Database Properties dialog, click on the General tab.

   

4. In the Embedded User Authentication field, change the value to Enabled. Notice that the dialog now shows three new options.
   • You do not have to change the setting in the EUA Active field because the default setting is Yes.
   • In the Encrypted field select Yes from the drop-down menu.
   • You do not need to change the Strong Password Encryption setting.
5. Click OK to enable EUA. The dialog closes and the Encryption Wizard opens.

   

6. After reading the page, click Next.
7. In Step 1, type the SYSDSO Password and click Next.

   

8. In Step 2, create and confirm a System Encryption Password. Then click Next.

   Note:
   For more information about External, see Using the External Option when Creating a SEP.

   

9. In Step 3, type a name for the Encryption Key in the Encryption Name field. Change the fields in the Options section as desired.

   

   • You can specify any name for the encryption key.
   • The encryption key used to encrypt a backup needs to be password protected. You can create a key without a password, but that will cause problems if that key is used at the time of backup.
   • It is recommend that you select the Default Key check box. However it is not required.
   • In this example DES is used as Cipher because it is free.
10. In Step 4, create a password protected key and then click OK.

    

    The dialog closes and a message opens informing you that the encryption of database is complete.

Advance To:

• Decrypting the Database