Table of Contents
Advertisement
SHA
MD5
SSHA
SMD5
CRYPT
None
User branch
Group branch
Certification authority
branch
Click on Apply to confirm your configuration.
Page 102/448
"Secure Hash Algorithm". This encryption method allows establishing a 160-bit or 160-
byte character string (called a "key") which will be used as a reference for
identification.
"Message Digest". This algorithm allows checking the integrity of data entered, by
generating a 128-bit MD5 key.
REMARK
As this method uses fewer bytes and as such has a lower level of security, it is
less robust against attacks.
"Salt Secure Hash Algorithm". Based on the same principle as SHA, but contains a
password salting function in addition, which consists of adding a bit sequence to the
data entered in order to make them less legible.
NOTE
This variant of SHA uses a random value to diversify the password's fingerprint.
Two identical passwords will therefore have two different fingerprints.
The encryption method is the most secure and you are strongly advised to use it.
"Salt Message Digest". Based on the same principle as MD5, with the addition of the
password salting function.
The password is protected by the CRYPT algorithm, derived from the DES algorithm
which allows block encryption using 56-bit keys.
This method is not highly advised, as it has a relatively low level of security.
No password encryption, meaning it is stored in plaintext.
Warning
This method is not recommended, as your data will not be protected.
Enter the name of the LDAP branch for storing users.
Example
ou=users.
Enter the name of the LDAP branch for storing user groups.
Example
ou=groups.
This field defines the location of the CA on the external LDAP base. This location is
used especially when searching for the CA used in SSL.
NOTE
Configuring this field is not absolutely necessary but in this case, in order for
the SSL authentication method to work the CA has to be specified in the list of
trusted CAs in the configuration of the SSL method.
(See menu Users\Authentication module\Available methods tab: the
authentication method Certificate (SSL) has to be added and the CA indicated
in the right column "Certificate authorities (C.A)" )
SNS - USER CONFIGURATION MANUAL V.3
sns-en-user_configuration_manual-v3 - Copyright © Stormshield 2016
DIRECTORIES CONFIGURATION
- Quick Links:
- Administrator Management
Hide quick links:
Advertisement
Table of Contents
