Bugzilla will be upgraded to version 5.0. The upgrade date is tentatively scheduled for 2 December 2018, pending final testing and feedback.
First Last Prev Next    This bug is not in your last search results.
Bug 1389673 - [RFE] possibility to enter encrypted passwords in --password option
[RFE] possibility to enter encrypted passwords in --password option
Status: CLOSED ERRATA
Product: Red Hat Enterprise Virtualization Manager
Classification: Red Hat
Component: ovirt-engine-extension-aaa-jdbc (Show other bugs)
3.6.6
Unspecified Linux
medium Severity medium
: ovirt-4.2.0
: 4.2.0
Assigned To: Martin Perina
Lucie Leistnerova
: FutureFeature, ZStream
Depends On:
Blocks: 1452668 1503872
  Show dependency treegraph
 
Reported: 2016-10-28 04:06 EDT by Jaroslav Spanko
Modified: 2018-05-15 13:35 EDT (History)
12 users (show)

See Also:
Fixed In Version: 1.1.5
Doc Type: Enhancement
Doc Text:
Previously, administrators had to enter an unencrypted password when invoking 'ovirt-aaa-jdbc-tool user password-reset'. The password was then encrypted inside ovirt-aaa-jdbc-tool and stored in the database. This update enables administrators to use the new --encrypted option to enter an already encrypted password when invoking 'ovirt-aaa-jdbc-tool user password-reset'. However, there are some caveats when providing encrypted passwords: 1. Entering an encrypted password means that password validity tests cannot be performed, so they are skipped and the password is accepted even if it does not comply with the password validation policy. 2. A password has to be encrypted using the same configured algorithm. To encrypt passwords, administrators can use the '/usr/share/ovirt-engine/bin/ovirt-engine-crypto-tool.sh' tool, which provides the 'pbe-encode' command to encrypt passwords using the default PBKDF2WithHmacSHA1 algorithm.
Story Points: ---
Clone Of:
: 1452668 (view as bug list)
Environment:
Last Closed: 2018-05-15 13:35:23 EDT
Type: Bug
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: Infra
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---
pstehlik: testing_plan_complete+

Attachments (Terms of Use)
Add an attachment (proposed patch, testcase, etc.)


External Trackers
Tracker ID Priority Status Summary Last Updated
oVirt gerrit 76498 master MERGED adding --encrypted parameter to password-reset 2017-05-19 07:32 EDT
Red Hat Product Errata RHEA-2018:1482 None None None 2018-05-15 13:35 EDT

  None (edit)
Comment 4 Martin Perina 2017-06-20 05:40:40 EDT 
Moving back to POST due to backport QA failure
Comment 5 Martin Perina 2017-06-26 10:33:12 EDT 
Fix will be included in ovirt-engine-extension-aaa-jdbc 1.1.6
Comment 7 Red Hat Bugzilla Rules Engine 2017-11-21 07:08:40 EST 
The documentation text flag should only be set after 'doc text' field is provided. Please provide the documentation text and set the flag to '?' again.
Comment 8 Lucie Leistnerova 2017-11-22 02:43:59 EST 
--encrypted option to ovirt-aaa-jdbc-tool added, in help described and sets the password correctly (error when bad encrypted)

verified in ovirt-engine-extension-aaa-jdbc-1.1.6-1.el7ev.noarch,
ovirt-engine-4.2.0-0.5.master.el7.noarch
Comment 13 errata-xmlrpc 2018-05-15 13:35:23 EDT 
Since the problem described in this bug report should be
resolved in a recent advisory, it has been closed with a
resolution of ERRATA.

For information on the advisory, and where to find the updated
files, follow the link below.

If the solution does not work for you, open a new bug report.

https://access.redhat.com/errata/RHEA-2018:1482
Note You need to log in before you can comment on or make changes to this bug.
First Last Prev Next    This bug is not in your last search results.