Ransomware attackers specifically target and attempt to destroy backup systems to increase the probability of payment. Hardening your system is critical. Please ensure you have reviewed your platform security using the Security Hardening Checklist
Cohesity

COHESITY Documentation

Explore our documentation to get started, discover products & new features, access troubleshooting guides, register sources, platforms support.

Products
Data Security Alliance
Visit Cohesity.com
Demos
Support
Blogs
Developers
Partner Portals
Cohesity Community
© 2026 Cohesity, Inc. All Rights Reserved.
Terms of Use|
Privacy Policy|
Legal|
  1. Home
  2. IT Analytics Security and Encryption Reference
  3. Appendix A. FAQs
  4. Frequently asked questions and solutions
IT Analytics Security and Encryption Reference

Frequently asked questions and solutions

Q: How are passwords encrypted and which cryptographic algorithm is used for encryption?

A: If SSO integration is used to access the portal, user passwords are stored in the external SSO IdP. Otherwise, passwords are stored in Oracle encrypted AES128.

Q: What are the idle and absolute session timeout values?

A: Default idle session timeout is 15 days, but can be customized by the administrator.

Q: How is the user session managed?

A: A user session is managed using cookies.

Q: How is the Oracle DB password encrypted in the flat files? Is there any data in transit encrypted?

A: If Oracle and portal are installed on separate servers, the administrator can configure that connection to use TLS to encrypt that connection. When Oracle and portal are installed on the same server, the data is not encrypted between the Portal and Oracle.

Feedback

Was this page helpful?
Previous

Appendix A. FAQs

Next

Introduction

Feedback

Was this page helpful?