How do you handle password in your code ?

[cramaboule]

@BigDaddyO, Nice solution. But you need username and password to access to your db?

[rudi]

Sorry, but I have to disagree: Encrypting passwords in a script together with the information required for decryption is obfuscation, not security.

 

Suggestion: Use the keepass CLI (kpscript), there is an UDF by @seadoggie01 available, never worked with it, just as a start:
 

 

[BigDaddyO]

5 hours ago, cramaboule said:

@BigDaddyO, Nice solution. But you need username and password to access to your db?

nope, access is by Active Directory so no mater what laptop or citrix box I'm logged into I can access the database.  So, this solution only works if you are in a corporate world.

[Festerini]

On 8/26/2025 at 1:55 AM, cramaboule said:

thanks... it is good if you prompt with inputbox... but in my case it is silent running script... thus making somehow clear and encrypted

 

I suggest storing the passwords in ini files, or a database hashed with a salt, which is dynamically generated at creation for each login device. If the switches belong to different legal entities, then there should be an ini file or database per entity. If you are not using an SQL database with security e.g. SQLite, ini file then for extra  obfuscation you can covert salts, and usernames to HEX along with encrypted keys, and store then in the middle of file/field full of random HEX characters. Random HEX characters that are random for every login.