Ernesto_Mayol_2
Feb 19, 2016Nimbostratus
Store encrypted values to be used in access policy
Here is my problem, I need to store a sensitive value (a shared secret) which I can retrieve while processing access policy to be able to compare it with the value provided by the other system that possesses the shared secret and is providing it in the session.logon.last.password session variable. Right now I have to put it in clear text in the access policy editor, I would like to know if it is possible to store it somehow just like any other password and access it from the Access Polity to compare it:
expr { equals [mcget -secure {session.logon.last.password}] }