Hi,
The SSHA of the raop1 is placed in
/etc/openxpki/config.d/realm.tpl/auth/handler.yaml as
raop1: "{ssha}zsmRmCaV2+Mg2t49v5hk3znKOL1VbnRz"
the openxpkiadm hashpwd of OpenXPKI gives the following output
Your hashed password
is:$argon2id$v=19$m=32768,t=3,p=1$OTF5RTA5ZEt5cHM5Qmord1hRSktoQT09$fP5TeBuDgqimXDoCXH+q2g
How the argon2 will be used in handler.yaml file for raop argon2 password??
Furthermore what is the command switch to use SHA512, i am trying the following
one but it is not working
openxpkiadm hashpwd -s sha512Unsupported scheme - supported values:
sha|ssha|md5|smd5|crypt|argon2
RegardsScott Thomas
On Thursday, 8 July 2021, 02:18:17 am GMT+5, Martin Bartosch via
OpenXPKI-users <[email protected]> wrote:
> OpenXPKI uses SSHA salted Sha 1 for raop password authentication via
> openxpkiadm hashpwd. How can we configure to use a higher version of SHA
> such as SHA256 OR SHA512?
The OpenXPKI password authentication handler supports salted md5, sha1, sha224,
sha256, sha384 and sha512, crypt and argon2.
A hashed argon2 password can be generated e. g. via openxpkiadm hashpwd -s
argon2
Most installations I know of delegate user authentication and authorization to
a suitable authentication backend, e. g. an LDAP directory.
Cheers
Martin
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
_______________________________________________
OpenXPKI-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/openxpki-users
