Siebel Security Guide > Security Adapter Authentication > Process of Configuring User and Credentials Password Hashing >

Configuring User Password Hashing

The procedure in this topic describes how to configure user password hashing.

This task is a step in Process of Configuring User and Credentials Password Hashing.

To implement user password hashing

1. For each user, create and record a username and a password.
2. To hash one or more passwords, run the hashpwd.exe utility at a command prompt. For command syntax options, see Running the Password Hashing Utility.
3. For each user, do one of the following:
   • In a database authentication environment, set the credentials for a database account to the username and the hashed password.

     For information about setting credentials for database accounts, see your RDBMS documentation.

   • In an LDAP or ADSI authentication environment, set the values in the directory attributes for username and password to the username and the hashed password.
4. Using Siebel Server Manager, configure the security adapter for user password hashing.
   • For the database security adapter (typically, DBSecAdpt):
     • Set the DataSourceName parameter to the name of the applicable data source (for example, ServerDataSrc).
     • For the applicable data source, set the DSHashUserPwd parameter to TRUE.
     • For the applicable data source, set the DSHashAlgorithm parameter to RSASHA1 (this is the default value) or SIEBELHASH (the Siebel proprietary algorithm).
   • For the LDAP or ADSI security adapter (typically, LDAPSecAdpt or ADSISecAdpt):
     • Set the HashUserPwd parameter to TRUE.
     • Set the HashAlgorithm parameter to RSASHA1 (this is the default value) or SIEBELHASH (the Siebel proprietary algorithm).
5. Provide each user with the username and the clear-text password for logging in.