[midPoint] User initial password

Radovan Semancik radovan.semancik at evolveum.com
Fri Apr 15 11:41:39 CEST 2016 

MidPoint does encrypt values of the ProtectedString type automatically. 
That's implemented for several years already. But that happens only when 
midpoint can reliably detect a data type. And the problem is that it 
cannot reliably detect that <value>5ecr3t</value> is ProtectedString.

-- 
Radovan Semancik
Software Architect
evolveum.com



On 04/15/2016 11:30 AM, Aivo Kuhlberg wrote:
>
> Hi Ivan, Radovan,
> Thanks for your feedback. I am satisfied with Ivan's solution at the 
> moment.
> I'd suggest for future development that when saving xml files midPoint 
> could encrypt automatically non-encrypted values.
>
>
> Regards,
>
> Aivo Kuhlberg
>
> ------------------------------------------------------------------------
> *Saatja:* midPoint <midpoint-bounces at lists.evolveum.com> nimelAivo 
> Kuhlberg <aivo.kuhlberg at rmit.ee>
> *Saadetud:* 14. aprill 2016 17:27
> *Adressaat:* midpoint
> *Teema:* [midPoint] User initial password
>
> How can I set initial password for midPoint 3.3.1 user when I import 
> them from csv-file. I tried to use something like that in
>
> schemaHandling section:
>
>     <credentials>
>         <password>
>             <inbound>
>                 <strength>weak</strength>
>                 <expression>
>                     <value>5ecr3t</value>
>                 </expression>
>             </inbound>
>         </password>
>     </credentials>
>
> but user import fails with following error:
> Failed to import: java.lang.IllegalStateException: Unencrypted value 
> in field 
> {http://midpoint.evolveum.com/xml/ns/public/common/common-3}value in 
> user:null(test.user5)
>
> Thanks,
> Aivo Kuhlberg
>
>
> ------------------------------------------------------------------------
> Käesolev e-kiri võib sisaldada asutusesiseseks kasutamiseks 
> tunnistatud teavet.
> This e-mail may contain information which is classified for official use.
>
> ------------------------------------------------------------------------
> Käesolev e-kiri võib sisaldada asutusesiseseks kasutamiseks 
> tunnistatud teavet.
> This e-mail may contain information which is classified for official use.
>
>
> _______________________________________________
> midPoint mailing list
> midPoint at lists.evolveum.com
> http://lists.evolveum.com/mailman/listinfo/midpoint


-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.evolveum.com/pipermail/midpoint/attachments/20160415/97a6e3bd/attachment.htm>

More information about the midPoint mailing list