R12: New Feature: Enhance Security With Non-Reversible Hash Password FNDCPASS (Doc ID 457166.1)

Last updated on SEPTEMBER 14, 2017

Applies to:

Oracle Application Object Library - Version 12.1.3 to 12.2 [Release 12.1 to 12.2]
Information in this document applies to any platform.
Oracle Applications Release:12.1.x + patch 23554636:R12.FND.B
Oracle Applications Release:12.2.3 + patch 21276707:R12.FND.C

===== LATEST SECURITY PATCHES =====
* Patch 26175708:(FND.B and FND.C) FND SECURITY RUP JUN-2017

Goal

This document explains how to use the FNDCPASS command to convert all local Oracle Application User encrypted passwords to a non-reversible, non-recoverable hash scheme.

Note: The option to migrate to the SHA hash mode has been deprecated in Release ATG 12.1.3+,  12.2.3+ and higher. You should now migrate to SHA-256, SHA-384, or SHA-512.  Please see the second section in the solution area of this note for details on Using AFPASSWD to Migrate to a Password Hashing Scheme.  Please note that it is also applicable to 12.1 release back-port.

 

Solution

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms