|
Siebel Security Guide > Security Adapter Authentication >
Running the Password Hashing Utility
This topic describes how to hash user passwords and generate salt values using the hashpwd.exe utility. The hashpwd.exe utility is located in SIEBSRVR_ROOT\bin (Siebel Server installation directory) or SIEBEL_CLIENT_ROOT\bin (Siebel Mobile or Developer Web Client installation directory). You can hash passwords using the RSA SHA-1 hashing algorithm or the siebelhash algorithm. The procedures in this topic describe how to hash passwords using both algorithms. When you have hashed user passwords using hashpwd.exe, store the hashed passwords and salt values in the directory or database, as appropriate. For information on storing hashed passwords, see Guidelines for Password Hashing. For information about the password hashing options mentioned in the procedures in this topic, see About Password Hashing. Hashing Passwords Using the RSA SHA-1 Algorithm
The following procedure describes how to run the hashpwd.exe utility using the default password hashing algorithm, RSA SHA-1. To hash passwords using the RSA SHA-1 algorithm
- To hash a password using the RSA SHA-1 algorithm, run the hashpwd.exe utility using one of the following syntaxes:
- To hash individual passwords, use the following syntax:
hashpwd password1 password2 ...
hashpwd -a rsasha1 password1 password2 ...
- To hash individual passwords and generate salt values for each password, use the following syntax:
hashpwd -a rsasha1 -s salt_length password1 password2 ...
where salt_length specifies the length, in bytes, of the salt value. Enter a value between 1 and 16. For example, for the clear text password, PassWord02, the hash values generated by the hashpwd.exe utility using the default rsasha1 option are as follows:
Salt : HyviRlb2yP
Password: UctMxQ+DoRlQZgiHIl7ghDy1bJM=
- To hash multiple passwords using a batch file, enter the passwords into a batch file (for example, the file might be named passwords.txt), and then specify the filename using the following syntax:
hashpwd @password_file_name
Hashing Passwords Using the Siebelhash Algorithm
The following procedure describes how to run the hashpwd.exe utility using the Siebel proprietary password hashing algorithm. To hash passwords using the siebelhash algorithm
- To hash passwords using the Siebel proprietary password hashing algorithm, run the hashpwd.exe utility using one of the following syntaxes:
- To hash individual passwords, use the following syntax:
hashpwd -a siebelhash password1 password2 ...
- To hash individual passwords and generate salt values for each password, use the following syntax:
hashpwd -a siebelhash -s salt_length password1 password2 ...
where salt_length specifies the length, in bytes, of the salt value. Enter a value between 1 and 16.
- To hash multiple passwords using a batch file, enter the passwords into a batch file (for example, the file might be named passwords.txt), and then specify the filename using the following syntax:
hashpwd -a siebelhash @password_file_name
Related Topic
About Password Hashing
|
