How securely is DOM data being stored? Can it be used to store sensitive info like passwords and/or API keys?
If not, is there an alternative in DataMiner to achieve this? I was thinking about the credential library but that’s only for community strings and SNMPv3 credentials I believe…
Hi Jochen,
I believe DOM data is stored in the elasticsearch/opensearch database (if you’re not using StaaS). I would not advise to store credentials/keys in there because that data is not encrypted at rest and can potentially be queried outside of DataMiner.
Currently there is no general credential library functionality in DataMiner that allows you to store any type of secret and to use it in automation scripts, DOM, … However, you could try one of the workaround suggested in this thread, but since this is about automation scripts I’m not sure if they apply to this situation.
There is already a feature suggestion to generalize the builtin credential manager. With some support this might make it to the roadmap.