Got it
Huawei Enterprise Support Community
Community Forums Storage
REST API Authentication c...

REST API Authentication credentials hashed

Created: Jan 18, 2022 13:54:56Latest reply: Jan 19, 2022 08:24:57 191 7 2 0 0
  HiCoins as reward: 0 (problem unresolved)
View the author 1#

Hello,


To avoid so safe the password in cleartext within the scripts I wanted to ask if there is any possibility to hash the credentials and transfer the hashed credentials for authentication as it would be possible with http authentication when using REST API. Or would it be possible to use http authentication instead of the REST authentication interface?


Best regards,


Nicolas

Like (2) Dislike (0) Favorite(0) Share Report
Previous: File cannot Be Uploaded to the Enterprise Resource Library or Department Resource Library
Next: how to power off the OceanStor 2200 V3 storage system
Featured Answers

Recommended answer

(0) (1)
little_fish
Admin Created Jan 19, 2022 01:00:16

Dear NimeoB,


Function
This interface is used to create domain authentication server settings.

URL
https://${ip}:${port}/deviceManager/rest/${deviceId}/LDAPConfig

Refer: Interface for Creating Domain Authentication Server Settings PASSWORDHASH.

Thanks.

View more
  • x
  • convention:
All Answers
(0) (0)
2#
olive.zhao
olive.zhao Admin Created Jan 18, 2022 13:55:23

Hello, dear!
It's nice to meet you in the community.
We're working on your problem. Please be patient.
View more
  • x
  • convention:
(0) (0)
3#
olive.zhao
olive.zhao Admin Created Jan 18, 2022 14:22:47

Hello, friend!

Yes, both HTTP and HTTPS are supported. HTTPS is recommended.HTTP is transmitted in plaintext, while HTTPS is transmitted in encrypted mode. Therefore, passwords cannot be stolen.

Hope this helps!

View more
  • x
  • convention:
(0) (0)
4#
NimeoB
NimeoB Created Jan 18, 2022 15:59:09

Hello,
I know that. I do not mean the transport but the authentication method. Dorado uses the REST interface for access authentication but from what I understand it is not possible to transfer the credentials in a hashed way. Therefore I have to store the password as a plaintext within the scripts I use for automation. Using the usual http authentication it would be possible to transfer the credentials as a base 64 hash and this would allow me to store a hash value in my script with no need to store the password as a plaintext. I hope this clarifies my issue.
View more
  • x
  • convention:

little_fish
little_fish Created Jan 19, 2022 00:50:12 (1) (0)
Dorado V6?  
(0) (1)
5#
little_fish
little_fish Admin Created Jan 19, 2022 01:00:16

Dear NimeoB,


Function
This interface is used to create domain authentication server settings.

URL
https://${ip}:${port}/deviceManager/rest/${deviceId}/LDAPConfig

Refer: Interface for Creating Domain Authentication Server Settings PASSWORDHASH.

Thanks.

View more
  • x
  • convention:
(0) (0)
6#
NimeoB
NimeoB Created Jan 19, 2022 08:24:57

Posted by little_fish at 2022-01-19 01:00 Dear NimeoB,FunctionThis interface is used to create domain authentication server settings.URLhttps: ...
Hey little_fish,
I don't want to configure AD authentication but I want to login with hashed local user credentials instead of cleartext username and password.
Thank you for your help.
View more
  • x
  • convention:

little_fish
little_fish Created Jan 26, 2022 10:02:10 (0) (0)
Sorry, I can't find this function. You can contact our TAC.  
Back to list

Comment

Advanced
B Color Image Link Quote Code Smilies
You need to log in to comment to the post Login | Register
Comment

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits

Login
Huawei Website Support About Huawei Privacy User Agreement Terms of Use Cookies Cookie Settings
Huawei Enterprise Huawei Carrier Forum Training & Certification

Contact Us: e_online@huawei.com Copyright © 2022 Huawei Technologies Co., Ltd. All rights reserved.

APP

Block
Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Reminder
Please bind your phone number to obtain invitation bonus.