back to website

Werk #17144: Add/Increase required password length for backup/agent key generation

Component Setup
Title Add/Increase required password length for backup/agent key generation
Date Jul 10, 2024
Level Trivial Change
Class New Feature
Compatibility Compatible - no manual interaction needed
Checkmk versions & editions
2.4.0b1 Checkmk Raw (CRE), Checkmk Enterprise (CEE), Checkmk Cloud (CCE), Checkmk MSP (CME)

When generating a encryption key for backups previously the length of the passphrase was not checked, therefore a would have been a valid passphrase.

In the enterprise and cloud edition it is possible to generate a agent signing key where a passphrase is required. Here the passphrase needed to be at minimum 8 characters.

With this Werk both passphrases need to be at least 12 characters long.

This only applies to newly generated keys. Already existing keys with shorter passphrases are still valid. Also if you upload a key-pair the length is not checked, since re-encrypting keys can be complicated and usually company policies already apply.

To the list of all Werks

The Checkmk logo (formerly known as Check_MK) is a trademark of Checkmk GmbH. ©2025 Checkmk GmbH. All rights reserved.

Join our hybrid Monitoring Community event from May 20-22 in Munich and learn more about the latest Checkmk features and our roadmap at the Checkmk Conference #11

Register now