Bookshelf Home | Contents | Index | PDF     

Siebel Security Guide > Security Adapter Authentication > Process of Configuring User and Credentials Password Hashing >

Configuring User Password Hashing

The procedure in this topic describes how to configure user password hashing with Siebel Business Applications.

This task is a step in Process of Configuring User and Credentials Password Hashing

To implement user password hashing

  1. For each user, create and record a user name and a password.
  2. To hash one or more passwords, run the hashpwd.exe utility at a command prompt. For command syntax options, see Running the Password Hashing Utility.
  3. For each user, do one of the following:
    • In a database authentication environment, set the credentials for a database account to the user name and the hashed password. For information about setting credentials for database accounts, see your RDBMS documentation.
    • In an LDAP or ADSI authentication environment, set the values in the directory attributes for user name, password, and salt to the user name, hashed password, and salt value returned by the hashpwd.exe utility.
  4. Using Siebel Server Manager, configure the security adapter for user password hashing as follows:
    • For the database security adapter (typically, DBSecAdpt):
      • Set the DataSourceName parameter to the name of the applicable data source (for example, ServerDataSrc).
      • For the applicable data source, set the DSHashUserPwd parameter to TRUE.
      • For the applicable data source, set the DSHashAlgorithm parameter to RSASHA1 (this is the default value) or SIEBELHASH (the Siebel proprietary algorithm).
    • For the LDAP or ADSI security adapter (typically, LDAPSecAdpt or ADSISecAdpt):
      • Set the HashUserPwd parameter to TRUE.
      • Set the HashAlgorithm parameter to RSASHA1 (this is the default value) or SIEBELHASH (the Siebel proprietary algorithm).
      • (Optional) Set the SaltUserPwd parameter to TRUE to specify that salt values can be added to user passwords.
      • (Optional) Set the SaltAttributeType parameter to specify the attribute that is to store the salt value.
  5. Provide each user with the user name and the clear-text password for logging in.
Related Topics

About Password Hashing

Configuring Password Hashing of Database Credentials

      
Siebel Security Guide Copyright © 2014, Oracle and/or its affiliates. All rights reserved. Legal Notices.