Does anyone know if the $config[‘crypt_key’] in the config.local.php can be changed after the store has been in use for a while? Also, are there any requirements for the $config[‘crypt_key’] value? My store owner is very concerned with PCI compliance and wants to change the encryption key once per year.
[quote name=‘grayloon’]Does anyone know if the $config[‘crypt_key’] in the config.local.php can be changed after the store has been in use for a while? Also, are there any requirements for the $config[‘crypt_key’] value? My store owner is very concerned with PCI compliance and wants to change the encryption key once per year.[/quote]
I would say, yes. I can’t see any errors after the changes for another key.