Log file encryption

When the logging level is set to Trace or Verbose, sections in a Replicate log file that might contain customer data will be encrypted while the rest of the log will remain in clear text.

In some support cases, R&D may require the ability to decrypt the log in order to analyze the problem. In such cases, Qlik Support will ask you to provide the task or environment-level encryption key. The encryption key is automatically generated and kept in a log.key file in the following locations:

• For decrypting a task's log file: <REPLICATE_INSTALL_DIR>\data\tasks\<task-name>
• For decrypting non-task related log files (e.g. server logs): <REPLICATE_INSTALL_DIR>\data

Should you wish to review the logs before sending to Qlik Support, you can decrypt them via the Replicate CLI as described below.

Decrypting Task Logs:

1. Open the Replicate command line from Start menu (Qlik Replicate > Qlik Replicate Command Line) or open a command prompt “as administrator” and switch to the following directory:

   <REPLICATE_INSTALL_DIR>\bin>

2. Run the following command:

   Syntax:

   repctl dumplog <log-file-path> <log.key-path> [> <path-to-output-file>]

   Example:

   repctl dumplog "C:\Program Files\Attunity\Replicate\data\logs\tasks\MyTask.log" "C:\Program Files\Attunity\Replicate\data\tasks\MyTask\log.key" > "C:\Program Files\Attunity\Replicate\data\decrypted.log”

Decrypting Non-Task Logs:

1. Open the Qlik Replicate command line from Start menu (Qlik Replicate > Qlik Replicate Command Line) or open a command prompt “as administrator” and switch to the following directory:

   <REPLICATE_INSTALL_DIR>\bin>

2. Run the following command:

   Syntax:

   repctl dumplog <log-file-path> <log.key-path> [> <path-to-output-file>]

   Example:

   repctl dumplog "C:\Program Files\Attunity\Replicate\data\logs\repsrv.log" "C:\Program Files\Attunity\Replicate\data\log.key" > "C:\Program Files\Attunity\Replicate\data\decrypted.log”