ArtemK.47790 (Customer) asked a question.
Automatic password hashing for OpenLDAP
The current setup: OpenLDAP directory on-prem is a source of truth, and contains SSHA hashed passwords. LDAP is synced up to Okta: OktaLDAPAgent uses service account to fetch LDAP attributes, etc.
The goal: is to use OKTA password synchronization and send passwords to LDAP server.
The problem: when set by Okta, passwords stored as plain text.
Question: is it possible to use Workflows to hash passwords before storing in LDAP? Any other way to automate the password hashing?
Hello @ArtemK.47790 (Customer) ,
Thank you for posting.
Please check the following threads with information related:
https://support.okta.com/help/s/question/0D50Z00008G7UmrSAF/hashed-password-in-ldap-okta-settings-to-authenticate?language=en_US
https://devforum.okta.com/t/okta-api-set-password-with-hashed-password/6894/4
Regards,
Natalia
Okta Inc.