[ODSEE] Root-dn Password Encryption Scheme was Changed to SSHA after Changed Password

(Doc ID 2290389.1)

Last updated on AUGUST 03, 2017

Applies to:

Oracle Directory Server Enterprise Edition - Version 11.1.1.7.0 and later
Information in this document applies to any platform.

Symptoms

The root-dn("cn=Directory Manager") password encryption scheme was changed from SSHA256 to SSHA after changing the root-dn password because the root-pwd-storage-scheme value is set to SSHA.

The root-dn had a password with encryption scheme by SSHA256 when the DS instance was created as follows:

# ./dsconf get-server-prop -p <portNo> -e
.........
db-env-path : /opt/odsee11.1.1.7.0/instances/dsinst5389/db
.........
.........
root-dn : cn=Directory Manager
root-pwd : {SSHA256}CxDnz6QaJxjssTrFa7H9F7vPe/6b7gX13GDyLRe/KjQGGgAXBSWAZQ==

However, after changing the root-dn password, the root-dn password encryption scheme was changed from SSHA256 to SSHA as follows:

# ldapmodify -D "cn=directory manager" -w xxxxx -h <hostname> -p <portNo>
dn: cn=config
changetype: modify
replace: nsslapd-rootpw
nsslapd-rootpw: mypassword

modifying entry cn=config

 

# ./dsconf get-server-prop -p <portNo> -e
.........
db-env-path : /opt/odsee11.1.1.7.0/instances/dsinst5389/db
.........
.........
root-dn : cn=Directory Manager
root-pwd : {SSHA}Zzq6qPxsdYkaAoHAlhdMYt1UMsOiZWVCUyhBfw==
root-pwd-storage-scheme : SSHA

 

 

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms