-2

I have a requirement to decrypt the SHA1 user password from Active Directory to Forgerock OpenIDM, using below java script I am able to decrypt the password in base64.

if (source != null)
{
    var base64 = Packages.org.forgerock.util.encode.Base64url
    b64tO = new Packages.java.lang.String(base64.decode(source));
    logger.info("Decoded: {}", b64tO);
    target = b64tO;
}

Could you please help me

I am expecting to decrypt the password from SHA1 to plain text and store it in Forgerock OpenIDM.

Improve this question
1
  • SHA1 is a hash function, not an encryption method. There's nothing to "decrypt".
    – Gereon
    Commented Nov 10, 2022 at 12:56

1 Answer 1

Reset to default
0

Decrypting SHA1 is not possible because it is not an encryption, but a hashing algorithm.

But there are ways so sync a DS password to IDM in cleartext during it being changed. You can use the plugin documented here for that: https://backstage.forgerock.com/docs/idm/7/pwd-plugin-guide/chap-sync-dj.html

Improve this answer

Your Answer

By clicking “Post Your Answer”, you agree to our terms of service and acknowledge you have read our privacy policy.

Not the answer you're looking for? Browse other questions tagged or ask your own question.