Servy securely encrypts stored passwords using AES encryption.

The AES encryption key and initialization vector (IV) are themselves protected with Windows DPAPI, ensuring that only the local system can decrypt and use them.

The AES key and IV are stored in the following files:

## AES Key
C:\ProgramData\Servy\security\aes_key.dat

## AES IV
C:\ProgramData\Servy\security\aes_iv.dat

You can replace the AES key and IV by modifying the files above.

Changing either file will make all previously encrypted passwords impossible to decrypt. Do this only if:

• You are setting up a new system
• You have a migration plan to re-enter or re-encrypt credentials

• Backup first: Always keep a secure backup of the existing key/IV before making changes.
• Restart required: Restart Servy App after modifying these files.
• Restrict access: Ensure the security folder has restricted permissions so only trusted administrators can access it.