https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58167#M12058 <P>Hi Jagadish,<BR /><BR />Our product team is aware of this concern after being reported by other customers' security scans -- this is tentatively slated to be addressed in Decipher IDP version 2.3 under DEC-570. See <A href="https://support.blueprism.com/en/support/solutions/articles/7000079900--decipher-dec-570-security-issues-with-rabbitmq-amqp-cleartext-authentication" target="_blank" rel="noopener">this KB here</A> for our available documentation about this.<BR /><BR />Until this version of Decipher is released, the workaround is to use a local instance of RabbitMQ. For local RabbitMQ installations, Decipher IDP only sends credentials (excluding passwords) to localhost addresses, using the default account which has no permissions to access remote systems.</P><BR /><BR />------------------------------<BR />Steve Boggs<BR />Senior Product Support Engineer<BR />Blue Prism<BR />Austin, TX<BR />------------------------------<BR /> Thu, 13 Apr 2023 15:44:00 GMT steven.boggs 2023-04-13T15:44:00Z https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58166#M12057 <P>Our security scans have shown that there's a need to disable the AMQP cleartext authentication method inside of RabbitMQ.<BR />-&gt;Has this been performed by the product or professional services team?<BR />-&gt;Is this configuration supported?<BR />-&gt;Has there been any lessons learned on how to go about it?<BR />-&gt;Has anyone else performed this switch over and successfully continued using Decipher components?</P><BR /><BR />------------------------------<BR />Jagadish Patro<BR />------------------------------<BR /> Thu, 13 Apr 2023 09:30:00 GMT https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58166#M12057 JagadishPatro 2023-04-13T09:30:00Z https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58167#M12058 <P>Hi Jagadish,<BR /><BR />Our product team is aware of this concern after being reported by other customers' security scans -- this is tentatively slated to be addressed in Decipher IDP version 2.3 under DEC-570. See <A href="https://support.blueprism.com/en/support/solutions/articles/7000079900--decipher-dec-570-security-issues-with-rabbitmq-amqp-cleartext-authentication" target="_blank" rel="noopener">this KB here</A> for our available documentation about this.<BR /><BR />Until this version of Decipher is released, the workaround is to use a local instance of RabbitMQ. For local RabbitMQ installations, Decipher IDP only sends credentials (excluding passwords) to localhost addresses, using the default account which has no permissions to access remote systems.</P><BR /><BR />------------------------------<BR />Steve Boggs<BR />Senior Product Support Engineer<BR />Blue Prism<BR />Austin, TX<BR />------------------------------<BR /> Thu, 13 Apr 2023 15:44:00 GMT https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58167#M12058 steven.boggs 2023-04-13T15:44:00Z https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58168#M12059 <P>Any document and reference is there for this?</P><BR /><BR />------------------------------<BR />Jagadish Patro<BR />------------------------------<BR /> Mon, 17 Apr 2023 08:04:00 GMT https://community.blueprism.com/t5/Product-Forum/Disable-cleartext-authentication-mechanisms-in-the-AMQP/m-p/58168#M12059 JagadishPatro 2023-04-17T08:04:00Z