Hello,
I would like to activate a product using a license key stored in a package, but packages are not encrypted, so I followed this solution:
https://www.wapt.fr/fr/doc/wapt-create- ... pt-package.
The problem with this solution is that it requires generating the encrypted file with the public keys of all the machines in the network.
Therefore, as soon as a new machine is added to the network, the package must be recreated.
Is there another solution besides encrypting with the public keys of each machine?
Thank you.
Use of sensitive data in a packet.
Forum Rules
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
Community Forum Rules
* English support on www.reddit.com/r/wapt
* French community support is available on this forum
* Please prefix the topic title with [RESOLVED] if it is resolved.
* Please do not edit a topic that is tagged [RESOLVED]. Open a new topic referencing the old one.
* Specify the installed WAPT version, full version, and build number (2.2.1.11957 / 2.2.2.12337 / etc.) as well as the Enterprise/Discovery edition.
* Versions 1.8.2 and earlier are no longer supported. The only questions accepted regarding version 1.8.2 are related to upgrading to a supported version (2.1, 2.2, etc.).
* Specify the server OS (Linux/Windows) and version (Debian Buster/Bullseye - CentOS 7 - Windows Server 2012/2016/2019).
* Specify the OS of the administration/package creation machine and the machine with the problematic agent, if applicable (Windows 7/10/11/Debian 11/etc.).
* Avoid asking multiple questions when opening a topic, otherwise it may be ignored. If there are multiple topics, open separate topics, preferably one after the other and not all at the same time (i.e., do not spam the forum).
* Include code snippets, screenshots, and other images directly in the post. Links to Pastebin, Bitly, and other third-party sites will be systematically removed.
* As with any community forum, support is provided voluntarily by members. If you require commercial support, you can contact Tranquil IT's sales department at 02.40.97.57.55
-
guestben321
- Messages: 23
- Registration: Nov 30, 2021 - 4:38 p.m.
WAPT Server Enterprise edition, version: 2.6.0.16552
Hello guestben321,
this is the correct method, but indeed WAPT lacks a wizard to make this operation less tedious. Using another method would compromise security.
With version 2.2 now released, one of the team's next objectives is to create wizards, and you've suggested one that's an excellent candidate.
Vincent
this is the correct method, but indeed WAPT lacks a wizard to make this operation less tedious. Using another method would compromise security.
With version 2.2 now released, one of the team's next objectives is to create wizards, and you've suggested one that's an excellent candidate.
Vincent
Vincent CARDON
Tranquil IT
Tranquil IT
-
dcardon
- WAPT Expert
- Messages: 1932
- Registration: June 18, 2014 - 09:58
- Location: Saint Sébastien sur Loire
- Contact :
Hello guestben321,
if all machines need to be able to see the license key, it's better to protect the repository itself rather than the key within the package. It's possible to enable client certificate authentication on the nginx server so that only WAPT agents registered on the server can download packages.
Regards,
Denis
if all machines need to be able to see the license key, it's better to protect the repository itself rather than the key within the package. It's possible to enable client certificate authentication on the nginx server so that only WAPT agents registered on the server can download packages.
Regards,
Denis
Denis Cardon - Tranquil IT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
Share your experiences on WAPT! Send us your blog and article URLs in the "Your Opinion of the forum, and we'll feature them on the WAPT
-
guestben321
- Messages: 23
- Registration: Nov 30, 2021 - 4:38 p.m.
Hello,
thank you for your reply.
Indeed, securing the repository server directly, rather than the key, seems like a good approach.
Ideally, I would like only certain members of an Active Directory group to have access to this license key.
good day
thank you for your reply.
Indeed, securing the repository server directly, rather than the key, seems like a good approach.
Ideally, I would like only certain members of an Active Directory group to have access to this license key.
good day
WAPT Server Enterprise edition, version: 2.6.0.16552
