Migrating Identity Providers - specifying a new users password hash.

Posted by Stephen Denne on Server Fault See other posts from Server Fault or by Stephen Denne
Published on 2010-06-14T21:22:47Z Indexed on 2010/06/14 21:33 UTC
Read the original article Hit count: 235

We'd like to switch Identity Provider (and Web Access Manager), and also the user directory we use, but would like to do so without users needing to change their password.

We currently have the SSHA of the passwords.

I'm expecting to write code to perform the migration. I don't mind how complex the code has to be, rather my concern is whether such a migration is possible at all.

MS Active Directory would be our preferred user store, but I believe that it can not have new users set up in it with a particular password hash. Is that correct?

What user directory stores can be populated with users already set up with a SSHA password?

What Identity Provider and Access Management products work with those stores?

© Server Fault or respective owner

Related posts about active-directory

Related posts about user-management