Does okta Rehash passwords when we create User with imported hashed password

Loading

Skip to Navigation Skip to Main Content

Search

Search

Select Language

0D54z0000A8xklSCQQOkta Classic EngineAuthenticationAnswered2026-02-17T09:00:23.000Z2024-05-20T19:10:33.000Z2024-05-31T17:16:58.000Z

jgzg7 (jgzg7) asked a question.

May 20, 2024 at 7:10 PM

Does okta Rehash passwords when we create User with imported hashed password

Hi, we are trying to import users from a different data store using this guide: https://developer.okta.com/docs/reference/api/users/*create-user-with-imported-hashed-password

When the user logs in for the first time, does okta rehash the password? Or is the original imported hashing algorithm kept?

Context: we would like okta to rehash the passwords in case our imported hashing algorithm isn't secure in the future.

Authentication

Top Rated Answers

nfmez (nfmez)
2 years ago
Hello @jgzg7 (jgzg7) Thank you for posting on our Community page!

At this time Okta does not re-hash the password automatically, however you could re-hash the password though API. Please see our doc below:
https://developer.okta.com/blog/2021/03/05/ultimate-guide-to-password-hashing-in-okta#hash-only-1

Thank you for reaching out to our Community and have a great day!
--
Join the discussion for the Ask Me Anything online event on May 23, 2024 with Okta Tactical Edge Product Experts
Expand Post
Selected as Best

All Answers

nfmez (nfmez)
2 years ago
Hello @jgzg7 (jgzg7) Thank you for posting on our Community page!

At this time Okta does not re-hash the password automatically, however you could re-hash the password though API. Please see our doc below:
https://developer.okta.com/blog/2021/03/05/ultimate-guide-to-password-hashing-in-okta#hash-only-1

Thank you for reaching out to our Community and have a great day!
--
Join the discussion for the Ask Me Anything online event on May 23, 2024 with Okta Tactical Edge Product Experts
Expand Post
Selected as Best
- 674v3 (674v3)
  2 years ago
  Hi, thanks for the response
  
  Follow Up Question: If Okta were to eventually change their default hashing algorithm, would they take care of the re-hashing every user's password?
  Expand Post

This question is closed.

Recommended content

Forum

Does Okta Rehash passwords when their default hashing algorithm changes?

Forum

Unable to expire password when creating users with hash password credentials

Forum

Importing a User with a SHA-1 Hashed Password

Forum

Is PBKDF2 algorithm supported for importing users using hashed password scenario?

Loading

Does okta Rehash passwords when we create User with imported hashed password