Versions Compared

Old Version 3

changes.mady.by.user Aryn Wiebe

Saved on

compared with

New Version 4

changes.mady.by.user Aryn Wiebe

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

IguanaX 10.1.105 introduces the ability to enable and disable log encryption to secure data at rest stored in your IguanaX Log Directory on disk.

...

Note

If upgrading from a previous IguanaX version, old unencrypted logs will remain in the logt log directory and a new log directory called loge will be generated by Iguana to store encrypted logs. You will no longer be able to access the old logs in the logt directory when log encryption is enabled.

Log encryption can be quickly enabled and disabled:

Expand
titleSTEP 1: Click EDIT to enable log encryption

  1. Click Edit and choose Enabled using the dropdown.

  2. Use the three dots to have Iguana generate an Encryption key.

If you are enabling log encryption on an existing IguanaX instance, you must first stop all components as the service will need to restart.

Image Removed

Expand
titleSTEP 2: Generate an Encryption Key

Iguana will supply you with a 32-character encryption key to use as a key to encrypt the logs. You can use the regenerate button to have Iguana generate a new key for you to copy.

Copy this key for the next step. You will be responsible for documenting the encryption key generated by Iguana as it will be required each time you restart the Iguana instance.

Image Removed
Expand
titleSTEP 3: Configure your Encryption Key

  1. Copy the encryption key into the Encryption Key and Confirm Encrpytion Key fields.

  2. Click Save.

Image Removed

A confirmation window will appear before proceeding to restart the Iguana instance and enable log encryption.

  • Confirm you have saved your encryption key in a secure location

  • Confirm you understand it will be required on every IguanaX start up.

Image Removed

...

titleSTEP 4: Iguana will restart, enter your encryption key and login to IguanaX

  1. Enter your Encryption Key and click Submit.

...

  1. Enter your login credentials as usual.

...

Encrypting logs is crucial for compliance with standards like HIPAA and GDPR, as it protects sensitive data such as Protected Health Information (PHI) from unauthorized access. By making logs unreadable without the proper decryption keys, encryption reduces the risk of data breaches while ensuring the confidentiality and integrity of stored information.

Review Log Encryption for how to enable and disable log encryption on existing and new IguanaX instances.

Considerations:

  • The log encryption key must be a cryptographically secure 32-character string generated by IguanaX.

  • The encryption key must be re-entered every time IguanaX service starts up.

  • IguanaX will not remember this key. You are responsible for documenting and storing this key in a secure location. There is no way to unlock Iguana without entering this encryption key when the service is started.

  • Encrypted logs will be stored in a new log directory,

...

  • called loge.