Configuration Reference Home
OpenDJ Server - Bcrypt Password Storage Scheme

Bcrypt Password Storage Scheme

The Bcrypt Password Storage Scheme provides a mechanism for encoding user passwords using the bcrypt message digest algorithm.

This scheme contains an implementation for the user password syntax, with a storage scheme name of "BCRYPT".

Parent Component

The Bcrypt Password Storage Scheme component inherits from the Password Storage Scheme

Properties

A description of each property follows.


Basic Properties: Advanced Properties:
↓ bcrypt-cost ↓ java-class
↓ enabled

Basic Properties

bcrypt-cost

Description
The cost parameter specifies a key expansion iteration count as a power of two. A default value of 12 (2^12 iterations) is considered in 2016 as a reasonable balance between responsiveness and security for regular users.
Default Value
12
Allowed Values
An integer value. Lower value is 1. Upper value is 30 .
Multi-valued
No
Required
No
Admin Action Required
None
Advanced Property
No
Read-only
No

enabled

Description
Indicates whether the Password Storage Scheme is enabled for use.
Default Value
None
Allowed Values
true
false
Multi-valued
No
Required
Yes
Admin Action Required
None
Advanced Property
No
Read-only
No


Advanced Properties

java-class

Description
Specifies the fully-qualified name of the Java class that provides the Bcrypt Password Storage Scheme implementation.
Default Value
org.opends.server.extensions.BCryptPasswordStorageScheme
Allowed Values
A java class that implements or extends the class(es) :
org.opends.server.api.PasswordStorageScheme
Multi-valued
No
Required
Yes
Admin Action Required
None
Advanced Property
Yes
Read-only
No