Is it possible to decrypt user password in Clarity? If so, how can be do it?
Thanks all in advance.
I think that it is impossible to decrypt user password because user password is stored in table by using Cryptographic hash function.
Clarity passwords are one way hash encryption, can you please let us know what you are trying to achieve by decoding the same.
Hi Shoichi_Sugawara, SumanPramanik - I'm trying to set up password for new users in Clarity and want to send an email to them with their password details for automated login.
If you create users by XOG then Default password would be Niku2000 and if you are On Prem customer you can update the password The Admin password needs resetting, login is locke - CA Knowledge for 1st time and ask them to change post their login.
Hi Suman, I'm fine with the password update statement. Issue is that I want to send an email to end users on their password change. Also, the password is not going to static and would be changing continuously. I need a decrypted password to be sent to users' email address to have their login credentials.
you cannot decrypt for sure, you can change to default and ask him to change.
Hashed passwords (our passwords are not encrypted) cannot be decrypted. They do not have an inverse operation (unless there were known vulnerabilities with the hash function / algorithms) and they are used specifically to make this hard (as in nearly impossible).
This is intended and done for security purposes, if a database with hashed passwords is compromised, the passwords would not be known (it would still be a good idea changing the passwords as there are other attacks that come into play, but this is generally out of scope of this discussion).
Well, just wondering again...
Other option instead of decrypting the password is to reset it to something you generate and then email the new password to them.
I believe I stumbled onto this a couple of years ago (when we looked at automating a password reset).
All the password issues and maintenance of users goes away if you integrate LDAP. So think of that aspect too.