Password Storage method in DevTest
Article ID: 263528
Updated On:
Products
Service Virtualization
Issue/Introduction
Would like to know if the user's passwords are actually stored in encrypted format in the database (as suggested in the manual) or if a hashing algorithm is used for storage.
Environment
Release : 10.7.2
Resolution
- In Registry DB, we store passwords in the ACL_USERS table using the hash algorithm.
- In IAM/Keycloak DB, we store Password hashes using the PBKDF2 algorithm with salts and hash iterations.
Feedback
Yes
No
Powered by
