Save connected database and passwords

damir.vadas_250 · October 6, 2020, 6:48am

Toad 13.3.0.181 x64
Want to save Toad passwords.
In Toad have "Save Passwords" checked (and when I close and reopen Toad, passwords are there).
However as this is Citrix env, when I login to new Citrix session, I loose all saved passwords.
So i tried to save them with:
echo A | xcopy "c:\Users\xxx\AppData\Roaming\Quest Software\Toad for Oracle\13.3\User Files\CONNECTIONACTIONS.INI" "some location"
echo A | xcopy "c:\Users\xxx\AppData\Roaming\Quest Software\Toad for Oracle\13.3\User Files\Connections.xml" "some location"
echo A | xcopy /s "c:\Users\xxx\AppData\Roaming\Quest Software\Toad for Oracle\13.3\User Files\Databases*.*" "some location"
But when returning to same location from "some location" Toad has no saved passwords.
Can you advise me what am I doing wrong and how t save those information.
brg
Damir

JohnDorlon · October 6, 2020, 12:30pm

Connections are encrypted in the Connections.XML file.
When you copy that file from User Files to "Some location" and then look at the file with notepad, are the passwords present in the file?

If so, when you start Toad the 2nd time (after copying the files back), are you logged in as same user? The encryption is tied to the user. So when you log in as a different user, you will lose passwords. A better technique would be to export connections from the login window, and then import again once you are logged in as the other user.

damir.vadas_250 · October 6, 2020, 5:25pm

are you logged in as same user?
Yes
We have two nodes so sometimes I go to one node and sometimes I go to another node (Citrix pharm) but user is the same all the time...

Am i copying that, I see in login that on those connections last login date are there (so and database data are copied) but passwords are empty.

Could you think what else can prevent saving passwords.

P.S.
I know for export/import options but as it sow and as I need only passwords, I do not like use them

JohnDorlon · October 6, 2020, 6:02pm

If you want to transport passwords between machines or users, you need to use export/import.

That is the only way.

damir.vadas_250 · October 6, 2020, 7:20pm

So now beside user and machine is part of hashing algorithm password?

mike.hamer · October 6, 2020, 7:36pm

The only way you might be able to do this without exporting and importing is via a Windows user with a roaming profile (have not verified). In general though password decryption can only happen on the machine where encryption occurred.

Mike

damir.vadas_250 · October 7, 2020, 10:01am

Hi,

today I place %computername% in script logic, so now I can distinct whenever i am connected to any Citrix pharm computer.
So now have for every %computername% one folder backup.
As I am already saving all mentioned files before, I will send info if this will help.

damir.vadas_250 · October 8, 2020, 6:45pm

H all,
I have test several days and connected to two nodes.
Saving all data in separate folders (according name of hostname).
So when I logged in again I took folder from the same host folder.
Unfortunately databases are here, even last connected is Ok but saved passwords are not present...not a single one.
Could you post real command to save "\CONNECTIONACTIONS.INI" and "Connections.xml" (the whole path from where I should read it) ...
this maybe would help.
P.S.
There is mine script code so if you can review code directly??
Brg
Damir

JohnDorlon · October 8, 2020, 6:53pm

Damir,

As I said before, the only way to transport passwords from one machine to another is export/import with a master password.

If somebody could gain access to all of your databases by copying a few files, that would be a security problem for Toad.

Sorry, I know this is inconvenient but this is the way it has to be.

-John

damir.vadas_250 · October 8, 2020, 7:10pm

Hi John,
Soimeties it is hard to explain, but I am saving for each maschine data in different forlder. S whenI come to server A I read data from folder A and when I come to server B I read from folder B.
This means that I am easy connecting to the same server...as I know from where to to read data on.

So it acts like I am logedin on the same machine as I took only data save from that server.

And this is not working.

So once again can you place the full path where mentioned two files are placed
Is that so hard or what.
P.S.
Export setting is not an option in mine case...please accept that and try to answer mine last question.
really appreciated if I can get answer on them

JohnDorlon · October 8, 2020, 7:14pm

It sounds like you are already copying the correct files (Connections.XML and ConnectionActions.ini), if the last connection is in there.

The location is not the same for everyone, but it is usually
C:\Users\YOUR_WINDOWS_USER_NAME\AppData\Roaming\Quest Software\Toad for Oracle\13.3\User Files

You can verify in Toad Options -> General. User Files is in the folder specified in "Application Data Directory"

After you copy the files, you can look in Connections.XML with notepad. You should see encrypted passwords in there. If you start up Toad using that file, and there is no password, it's because the password was encrypted on a different machine/user.

damir.vadas_250 · October 9, 2020, 8:01am

Ok, let me explain what I have:
I connect with the same user all the time.
In the same citrix session I open Toad, save some passwords, save CONNECTION*.* files to some other side.
Close the Toad
Then I copy those files in a place where you said, open Toad ... all works.
Then I save additional passwords, save again to some other side.
Close the Toad
Then I copy those files in a place where you said, open Toad ... all works-all new passwords are working.

Then I sign out form Citrix.
Logged in again several times until I come to the same server (checking %computername% value).
When i landed to the same server as before, copy the same saved settings as I did before, open Toad and passwords are not visible in Toad.
On file system are there (in Connections.xml file) but Toad do not represent them.
As i do not know what Citrix is ding with mine profile and temp files etc, what else could be changed to influence Toad saved passwords...
Seems that Quest is using something else to make hash ... but cannot see what
Any help!?

damir.vadas_250 · October 9, 2020, 12:23pm

So if i was not clear.
When I return data from other location to roaming profile director, check content passwords were there.
When I start Toad, pwds are missing.
When I close Tad, "Connections.xml" do not have any password.
So only one that is clearing password is Toad.

So please tell me what is Toad checking and why is it deleting passwords from Connections.xml, regardless they come from the same user and same server....what else is Toad checking for encrypting password???

I can claim 100% that Toad is doing in behind something nasty!!!

P.S.
when same operation is done in same citrix session Toad accept copied file and passwords are reusable .

P.P.S
what is file "\AppData\Roaming\Quest Software\Reactive.Telemetry\Data}machineid.dat" doing?
as I said, when citrix server changes, maybe this one file is wrong (from previous node) and involved in password crypting?

JohnDorlon · October 9, 2020, 2:07pm

I'm sorry, I can't tell you any more without compromising our security.

damir.vadas_250 · October 9, 2020, 2:37pm

can you then at least say if is possible to export/import user settings through automated task (Toad) but through command line, and avoid GUI?