Configuring User Password Hashing
The procedure in this topic describes how to configure user password hashing with Siebel Business Applications.
This task is a step in Process of Configuring User and Credentials Password Hashing.
To implement user password hashing
For each user, create and record a user name and a password.
To hash one or more passwords, run the hashpwd.exe utility at a command prompt. For command syntax options, see Running the Password Hashing Utility.
For each user, do one of the following:
In a database authentication environment, set the credentials for a database account to the user name and the hashed password. For information about setting credentials for database accounts, see your RDBMS documentation.
In an LDAP authentication environment, set the values in the directory attributes for user name, password, and salt to the user name, hashed password, and salt value returned by the hashpwd.exe utility.
Create a Gateway security profile with the hash password enabled and SHA1 as the hash algorithm. For more information, see Configuring Security Adapters Using the Siebel Management Console.
Using Siebel Server Manager, configure the security adapter for user password hashing as follows:
For the database security adapter (typically, DBSecAdpt):
Set the DataSourceName parameter to the name of the applicable data source (for example,
ServerDataSrc).For the applicable data source, set the DSHashUserPwd parameter to
TRUE.For the applicable data source, set the DSHashAlgorithm parameter to
RSASHA1(this is the default value).
For the LDAP security adapter (typically, LDAPSecAdpt):
Set the Hash User Password parameter to
TRUE.Set the Hash Algorithm parameter to
RSASHA1(this is the default value).(Optional) Set the Salt User Password parameter to
TRUEto specify that salt values can be added to user passwords.(Optional) Set the Salt Attribute Type parameter to specify the attribute that is to store the salt value.
Provide each user with the user name and the clear-text password for logging in.