This section describes TDV password encryption.

TDV uses AES and Tiny Encryption Algorithm Variant (TEAV) for password encryption. For details on TEAV, visit: http://www.axlradius.com/freestuff/TEAV.java.

The JDBC driver supports RSA encryption. Each JDBC connection uses a unique RC4 session key to encode the users password for transport. The ADO.NET and ODBC drivers still use TEAV.

The TDV stores password hashes or encrypted passwords for users of the composite domain, but does not store passwords for LDAP or pass-through users.

The following TDV command line utilities make use of a -optfile or -configFile option, which can be used to hide password information from the command line: