SCRAM-SHA-256 Password Storage Scheme

The SCRAM-SHA-256 Password Storage Scheme provides a mechanism for encoding user passwords for use with the SASL SCRAM authentication mechanism defined in RFC 5802.

This scheme contains an implementation for the user password syntax, and uses the scheme name SCRAM-SHA-256. Password values are encoded using the format described in RFC 5803.

Parent

The SCRAM-SHA-256 Password Storage Scheme object inherits from Password Storage Scheme.

Basic Properties

enabled

SynopsisIndicates whether the Password Storage Scheme is enabled for use.
Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced

No

Read-Only

No

scram-iterations

SynopsisThe number of iterations to use when deriving the salted password.
Default Value

10000

Allowed Values

An integer.

Lower limit: 1.

Multi-valued

No

Required

No

Admin Action Required

None

Advanced

No

Read-Only

No

Advanced Properties

Use the --advanced option to access advanced properties.

java-class

SynopsisSpecifies the fully-qualified name of the Java class that provides the SCRAM-SHA-256 Password Storage Scheme implementation.
Default Value

org.opends.server.extensions.ScramSha256PasswordStorageScheme

Allowed Values

A Java class that extends or implements:

  • org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced

Yes

Read-Only

No

Read a different version of :