Directory Services 7.4.3

SHA-1 Password Storage Scheme (LEGACY)

LEGACY since 7.0.0: is insecure. Alternative: A strong hash-based scheme such one of the schemes enabled by default.

The SHA-1 Password Storage Scheme provides a mechanism for encoding user passwords using an unsalted form of the SHA-1 message digest algorithm. Because the implementation does not use any kind of salting mechanism, a given password always has the same encoded form.

This scheme contains only an implementation for the user password syntax, with a storage scheme name of "SHA".

Parent

The SHA-1 Password Storage Scheme object inherits from Password Storage Scheme.

SHA-1 Password Storage Scheme properties

You can use configuration expressions to set property values at startup time. For details, see Property value substitution.

Basic Properties Advanced Properties

enabled

java-class

Basic properties

Use the --advanced option to access advanced properties.

enabled

Synopsis

Indicates whether the Password Storage Scheme is enabled for use.

Default value

None

Allowed values

true

false

Multi-valued

No

Required

Yes

Admin action required

None

Advanced

No

Read-only

No

Advanced properties

Use the --advanced option to access advanced properties.

java-class

Synopsis

Specifies the fully-qualified name of the Java class that provides the SHA-1 Password Storage Scheme implementation.

Default value

org.opends.server.extensions.SHA1PasswordStorageScheme

Allowed values

A Java class that extends or implements:

  • org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin action required

None

Advanced

Yes

Read-only

No