Skip to main content
Version: 8.2511.x.x RR

All credential types

The policy parameter that can be set for credentials of all types:

auditCredentialValue

  • Data Type: Boolean
  • Default: false
  • Description: Determines whether the credential's value attribute should be printed in the audit log. Other attributes are not affected, i.e., they are audited anyway.

validityDateCalculationVersion

  • Data Type: Values: "v1", "v2"
  • Default: "v2"
  • Description: "v1": If validityTo is not defined it is calculated from the date of modification date. "v2": if validityTo is not defined it is calculated from the date of validityFrom.

All password like credentials

The policy parameter that can be set for password like credentials types:

hashAlgorithm

  • Data Type: enum, values: SSHA256, SSHA, ARGON2ID, PBKDF2 (bcrypt is only for Password credential)
  • Default: SSHA256
  • Description: Defines the hash algorithm used for password hashing.

hashAlgorithm.pbkdf2.salt.length

  • Data Type: integer (valid interval between 4 and 128)
  • Default: 16
  • Description: Defines salt length (number of bytes) for PBKDF2 hashing algorithm.

hashAlgorithm.pbkdf2.iterations

  • Data Type: integer (valid interval between 1 and 1000000)
  • Default: 100000
  • Description: Defines iterations on hashing with PBKDF2 algorithm.

hashAlgorithm.pbkdf2.key.length

  • Data Type: integer (valid interval between 8 and 256)
  • Default: 32
  • Description: Defines the key length (number of bytes) with PBKDF2 algorithm.

hashAlgorithm.argon2id.salt.length

  • Data Type: integer (valid interval between 4 and 128)
  • Default: 16
  • Description: Defines the salt length (number of bytes) with ARGON2ID algorithm.

hashAlgorithm.argon2id.iterations

  • Data Type: integer (valid interval between 1 and 64)
  • Default: 2
  • Description: Defines iterations on hashing with ARGON2ID algorithm.

hashAlgorithm.argon2id.key.length

  • Data Type: integer (valid interval between 8 and 256)
  • Default: 32
  • Description: Defines the key length (number of bytes) with ARGON2ID algorithm.

hashAlgorithm.argon2id.memory

  • Data Type: integer (valid interval between 4092 and 134217728)
  • Default: 16384
  • Description: Defines the memory size allowed for ARGON2ID algorithm.

hashAlgorithm.argon2id.parallelism

  • Data Type: integer (valid interval between 1 and 64)
  • Default: 1
  • Description: Defines number of parallel threads for ARGON2ID algorithm.