The client-side encryption mode is fundamental, it cannot be enabled or disabled in an already functioning Passwork instance (doing so would result in an inability to access the data).

Client-side encryption can be enabled immediately after Passwork installation and before creating the first user. If at least one user has already been created in Passwork, the system will operate without client-side encryption and it will not be possible to enable it afterwards.

The standard Docker installation script has been updated with an argument that allows enabling client-side encryption automatically.

Example of running the script with client-side encryption enabled:

The Passwork retrieval script has been updated with an argument that allows enabling client-side encryption automatically.

Create an additional configuration file named 

 in the root directory of Passwork (for example: 

) and add the following line to enable client-side encryption:

Enable сlient-side encryption

Client-side encryption

Web server

Headers

SSL Termination

Passwork server configuration

UI settings

Emergency mode

Advanced settings

Technical documentation

Technical requirements

Online installation

Offline installation

Linux

Windows Server

Untitled

Ubuntu

Debian

Alma/Rocky/CentOS

Enabling SWAP file on Linux

Docker

Windows Server (PowerShell)

Manual code updates

Migration from installer to PowerShell

Installation migration

Passwork update

Define encryption mode

Windows Server (installer)

Linux (Git)

Passwork update to version 6.5

Initial data migration

Confirm migration in customer portal

Upgrade PHP to 8.3

Passwork update to version 7

Migration of Passwork database objects

Data migration in the Passwork web interface

Actions after migration

Migration to Passwork 7

Health check

Python connector

CLI utility

Docker container for CLI

API & integrations

Configuring Cron for Linux

Configuring Windows Task Scheduler

Background tasks

Configuring the Event Viewer

Events list from the Activity Log

Recording Activity log to Syslog or Event Viewer

Mailer config

Setting up mail notifications

In case of errors

MongoDB

Updating Passwork components

Mobile applications

Adding a server

Users

Groups

Synchronization

Test authorization

LDAPS setup

DN filters

LDAP settings

Configuring SSO with Keycloak

Configuring SSO with AD FS

Configuring SSO with Microsoft Entra ID (Azure AD)

SSO settings

Administration

Examples of creating and restoring MongoDB backups

Examples of authorization settings

Database

Standard installation

Manual installation

Passwork 6

Mapping LDAP security groups with roles in Passwork

Migration to Passwork 6

Passwork 5

How to update Passwork 4→5 version

Debian 10

Windows server 2016/2019

CentOS

Passwork 4

Update to Passwork 4

Passwork 3

Legacy

User manual

Passwork 6.1

Passwork 6.2

Passwork 6.3

Passwork 6.4

Passwork 7.0

Release notes

Help center