changing ldap passwords via jira with SSHA512

We use OpenLDAP for authentication, and all password are stored using SSH512 encryption ({CRYPT}$6$)

We use OpenLDAP to authenticate jira users. This works well, but when users change their passwords, it stores the passwords as plain DES ( {CRYPT}).

How do we make jira use SSHA512 to encrypt changed passwords?

1 answer

0 votes

Hi Brian,

This is a setting within Jira's User directory configuration that would have to be adjusted.  If you login to Jira as an admin, then you should then be able to navigate to the Gear Icon -> User management -> User Directories.   From here you would need to edit this user directory.

In Jira, when selecting an LDAP and then specifically an OpenLDAP template, under the user Schema settings, there is a section to determine what encryption type is used for passwords in that directory:

userpassencrypt.png

My test instances shows options for DES, plaintext, SHA, MD5, and SSHA.  It is not clear to me just yet if the SSHA option listed there is the SSHA512 variety or not.   But try the SSHA listed there and then scroll to the bottom of this page to click the Save and Test button to update this directory in Jira.

Suggest an answer

Log in or Sign up to answer
Community showcase
Posted Sep 25, 2018 in Jira

Atlassian Research Workshop opportunity on Sep. 28th in Austin, TX

We're looking for participants for a workshop at Atlassian! We need Jira admins who have interesting custom workflows, issue views, or boards. Think you have a story to sha...

431 views 7 5
Join discussion

Atlassian User Groups

Connect with like-minded Atlassian users at free events near you!

Find a group

Connect with like-minded Atlassian users at free events near you!

Find my local user group

Unfortunately there are no AUG chapters near you at the moment.

Start an AUG

You're one step closer to meeting fellow Atlassian users at your local meet up. Learn more about AUGs

Groups near you