R12: New Feature: Enhance Security With Non-Reversible Hash Password FNDCPASS
(Doc ID 457166.1)
Last updated on AUGUST 30, 2024
Applies to:
Oracle Application Object Library - Version 12.1.3 to 12.2 [Release 12.1 to 12.2]Information in this document applies to any platform.
Oracle Applications Release:12.1.x + patch 28292585:R12.FND.B
Oracle Applications Release:12.2.3 + patch 28292585:R12.FND.C
===== LATEST SECURITY PATCHES =====
* Patch 26175708:(FND.B and FND.C) FND SECURITY RUP JUN-2017
Goal
This document explains how to use the FNDCPASS command to convert all local Oracle Application User encrypted passwords to a non-reversible, non-recoverable hash scheme.
Note: The option to migrate to the SHA hash mode has been deprecated in Release ATG 12.1.3+, 12.2.3+ and higher. You should now migrate to SHA-256, SHA-384, or SHA-512. Please see the second section in the solution area of this note for details on Using AFPASSWD to Migrate to a Password Hashing Scheme. Please note that it is also applicable to 12.1 release back-port.
Solution
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
Goal |
Solution |
Client Prerequisites |
Using the FNDCPASS command |
Using AFPASSWD to Migrate to a Password Hashing Scheme |
Migrating with AFPASSWD |
Known Issues |
Extended Support Releases Only |
References |