Need to understand how credentials are stored in Saviynt?
In case we are not able to use any of the available vault connectors in Saviynt and we have to store credentials in Saviynt connectors directly then from the security perspective what all standards are followed by Saviynt in keeping customers password safe?
Please guide us in case there is any documentation around this on Saviynt documentation portal.
Saviynt supports data encryption in transit via SSL (and VPC / VPN). Strong encryption schemes such as AES (256 / 128 bit) and 3DES are supported. Data at rest is encrypted via native DB encryption. Currently, only predefined data fields are encrypted at rest.
If the question is about how we are securely storing the password of a service account in a connector we are using Advanced Encryption Standard (AES) algorithm to encrypt the password. This allows us to authenticate with AD or any target application. Additionally, if you are looking for details in terms of how we are storing the user credentials, that Saviynt uses to authenticate users locally, we use bcrypt hashing algorithm.
Please find below information and reference link.