Repository Encryption Configuration

Configuring repository encryption requires specifying the encryption protocol version and the associated Key Provider properties. Repository encryption can be configured on new or existing installations using standard properties. Records in existing repositories should be readable using standard capabilities, and the encrypted repository will write new records using the specified configuration.

Disabling repository encryption on existing installations requires removing existing repository contents, and restarting the system after making configuration changes. For this reason, flow administrators should confirm that the system has processed all available FlowFiles to avoid losing information when disabling repository encryption.