How to verify an RKM client policy?
client.applicationpolicy is always 000102030405060708091011
If you want to see what your client is allowed to do given its policy, open your application registration file and look at the client.applicationpolicy parameter. Split the entire value value into values of 2 characters, then refer to the values with the following table:
00 - Can Encrypt
01 - Can Decrypt
02 - Can do HMAC
03 - Can do HMAC Verify
04 - Can do GetKey
05 - Can do PutKey (Import key)
06 - Can Generate a key (Create key)
07 - Can change key state, create and change key attribute (update key)
08 - Can do certificate rollover
09 - Can get a certificate request
10 - Can sign
11 - Can verify
Example:
- if your application policy is 000104, your application can encrypt, can decrypt and can get a key.
- if your application policy is 000102030405060708091011, your application is allowed everything possible.
Related Articles
How to see a list of pending changes to Roles in RSA Identity Governance & Lifecycle Number of Views RSA Via Lifecycle & Governance administrators do not see Privileges tab for users Number of Views Users are able to see each other softoken in RSA SecurID token application in Citrix environment Number of Views event explorer terminated immediately once you start and you see error UnsupportedEncodingException when running adjustHe… Number of Views Unable to see orgs after in place upgrade from 5.7.3 to 6.0.2.1 SP2 Number of Views
Trending Articles
RSA MFA Agent 2.5 for Microsoft Windows Installation and Administration Guide How to download and install the AFX Server Archive in RSA Identity Governance & Lifecycle The Template ({Connector Template Name}) has missing file content error when creating AFX Connectors in RSA Identity Gover… Downloading RSA Authentication Manager license files or RSA Software token seed records Troubleshooting RSA MFA Agent for Microsoft Windows
