Android encryption password minimum requirements

Similar Messages

• UserPrincipal.ChangePassword thinks the password does not meet the password policy requirements.

  I am working with C# 3.5.  My goal is to have a simple program to allow a user change their Active Directory user password via a web page.  I have a console application to initially test the commands to active directory and I am running into a problem.
  my domains password policy is as follows.
  Enforce password history 24 passwords remembered
  Minimum password length 7 characters
  Password must meet complexity requirements Enabled
  Store passwords using reversible encryption Disabled
  The error I am getting is "The password does not meet the password policy requirements. Check the minimum password length, password complexity and password history requirements. (Exception from HRESULT: 0x800708C5)"
  I believe the new password I am using does meet the policy requirements and I can't seem to get this program to work.  All I want to build is a simple program to allow a user to change their Active Directory user password.
  My test code is below.
  using System;
  using System.Collections.Generic;
  using System.Linq;
  using System.Text;
  using System.DirectoryServices.AccountManagement;
  using System.DirectoryServices;
  namespace ActiveDirectoryHacking
  class Program
  static void Main(string[] args)
  PrincipalContext adPrincipalContext = new PrincipalContext(ContextType.Domain, "192.168.1.26", "OU=Staff,DC=SFdev,DC=org", "John.Doe", "Initial Complex P234dfword");
  Console.WriteLine("Validate user {0}", adPrincipalContext.ValidateCredentials("John.Doe", "Initial Complex P234dfword"));
  UserPrincipal user = UserPrincipal.FindByIdentity(adPrincipalContext, "John.Doe");
  Console.WriteLine(user.DistinguishedName);
  user.ChangePassword("Initial Complex P234dfword", "e$213434sDKS really? www.microsoft.com");
  //user.SetPassword("Initial Complex P234dfword");
  user.Save();
  Console.WriteLine("Press a key to exit.");
  Console.ReadKey();
  The .SetPassword works if I use a user with Domain Admin access but it appears the John.Doe is unable to change their own password with the .ChangePassword method.
  The output until the exception is the following
  Validate user True
  CN=John Doe,OU=Staff,DC=SFdev,DC=org
  I have no clue why any password I select for the new password does not work.

  I looked into the password policy and this is what I have learned.  There is a major difference between undefined and defined in policies plus making sure the defined policies are set with values that will provide the desired results.
  Since this is a development domain and is used for testing I have tweaked the password policy to allow me to develop and test against the domain with a little bit more freedom than a production domain.
  I have changed the policy to the following settings. 
  Enforce password history 0 passwords remembered
  Maximum password age 0 days
  Minimum password age 0 days
  Minimum password length 7 characters
  Password must meet complexity requirements Disabled
  Store passwords using reversible encryption Disabled
  Now, I am able to run my program against the domain testing the password change utility.  My error was leaving some of the policy settings as not defined and not understanding what that really means for each setting.  For development of a password change utility I need the flexibility to test and the relaxed policy changes allows me to run the program many times without having to work with test data that works around a more restricted policy.

• Encrypted Password in AIAConfigurationProperties.xml

  Hi,
  During the installation of Primavera P6 to EBS Projects PIP, the Password is getting encrypted in the Service Configuration in AIAConfigurationProperties.xml. Is there any script that we can run so that we can avoid the encryption of the password there by having the flexibility to change the un-encrypted Password as and when required?
  <Property name="User.P6EPPM_01.Name">primavera</Property>
  <Property name="User.P6EPPM_01.pwd">Se8bfsuMJNvYmKB4mg9L3w==</Property>
  Your pointers will be highly appreciated!
  Regards,
  Chaitanya

  Try this:
  There's a script that can be used to re-encrypt a new password. If the cleartext password is, say, welcome1, do the following -
  - Go to AIA_HOME/Infrastructure/install/install/wlscripts/config
  - Run command: ./encrypt.sh welcome1
  This is useful for re-encrypting any of the passwords that are captured during installation in the deploy.properties file. I can't say for sure that it is the same encryption that is used for the P6 credentials, but it's worth a try.

• Reading Encrypted Password from Configuration File and Decrypt it at login

  Hi All,
  My application reads a configuration file to connect to the ORACLE database. The values defined for password are clear text as given below:
  user: 'mh'
  password='abcd1234'
  Is there is any way I can give an encrypted password in the configuration file instead of a clear text file and at the time of login ORACLE decrypts it. I am using ORACLE 11g Database.
  My company have a requirement that passwords are not stored in the clear in properties files. the reason being I suppose that if the password is stored in plaintext someone could hit the property file directly, get the password and then connect to the database with it.
  For a regular user connecting through an Oracle client or SQL Developer they would need to have the plaintext password in order to connect.
  its based on the requirements of
  International Standards Organization Guidance
  ISO 17799 � 9.5.4 requires password management systems to:
  � enforce the use of individual passwords
  � allow users to select and change their own passwords if appropriate
  � enforce a choice of quality passwords
  � force regular changes of passwords
  � maintain a record of previous user passwords to prevent re-use
  � not display passwords when they are being entered
  � store password files separately from application system data
  � store passwords in encrypted form using a one way encryption algorithm
  � alter default vendor passwords following installation of software
  So if I can store the password encrypted using a one way algorithm then hacker/user couldn't decrypt it and then access the database.
  I have feeling there is a way of configuring this in Oracle advanced Security, but just can't quite get it to work.
  Edited by: user5568473 on 20-May-2013 00:05

  So if I can store the password encrypted using a one way algorithm then hacker/user couldn't decrypt it and then access the database.... and neither can your application. Encryption is needed in this case. The decryption must be written into your application. I've written my own in some cases, but finding a library for your development language is a smarter solution.
  One alternative is using an Oracle wallet. It doesn't fit every circumstance and does have some maintenance headaches.
  You can set up a basic secure password store to encrypt and store the password for a given user@instance combination, and then connect to the database without passing a password. SQL*Net adds in the appropriate password from the wallet for when you connect.
  http://www.oracle.com/technetwork/database/security/twp-db-security-secure-ext-pwd-stor-133399.pdf
  Advanced Security Option also allows you to set up a Public Key Infrastructure connections (SSL encryption and/or authentication). It also uses a wallet to store the SSL certificates and credentials. I don't have personal experience on this approach.
  SSL and the wallet allow you to connect to the database similar to CONNECT/@net_service_name or sqlplus /@net_service_namehttp://docs.oracle.com/cd/B28359_01/network.111/b28530/asossl.htm#CIHCBIEG

• How to encrypt password in serverstopper class??

  Hi,
  I have configured the weblogic server as windows service and currently using boot identity file for username/pw to startup. To enable graceful shutdown of the server, i am using serverstopper class. But to facilitate changing of pw, i am reading the password from a property file in which the password is stored in plain text format. Is there a way to encrypt the password and configure serverstopper class to use the encrypted password or the serverstopper class can use boot identity file to shutdown? When i tried the serverstopper class without username/pw, i am not able to shutdown the service and getting anonymous user can't shutdown the service. Thanks in advance for your reply.
  Thanks,
  Kuppusamy.V.,

  Hi Kuppuswamy,
  Here is the simple "WLST interpreter script", I didn't have time so tried to keep java code as simple as possible(didn't follow good coding practices :-( ). Before executing this java program you need to generate keys. Below is the procedure for that.
  Assumption :-
  BEA_HOME :- /usr/VASVijay/bea10mp1
  WL_HOME :- BEA_HOME/wlserver_10.0
  1) Go to WL_HOME/server/bin and set the environment by executing "setWLSEnv.sh".
  2) Then execute below command which generate "userconfig" and "userkey" files in the directory you had execute this command
  java weblogic.Admin -adminurl t3://adminserverl:port -username <adminusername> -password <adminpassword> -userconfigfile userconfig -userkeyfile userkey -STOREUSERCONFIG
  This command prompts for "Y" or "N", select "Y", then creates two files "userconfig" and "userkey"
  3) Validate above keys are correct, execute below command
  java weblogic.Admin -adminurl t3://adminserverl:port -userconfigfile userconfig -userkeyfile userkey -GETSTATE
  Above command should display "RUNNING".
  4) Compile below java code and execute. Change the server name(VASMS1) in "shutdown('VASMS1','Server') according to your server name.
  import java.util.*;
  import weblogic.management.scripting.utils.WLSTInterpreter;
  import org.python.util.InteractiveInterpreter;
  public class VASServerShutdown
  static InteractiveInterpreter interpreter = null;
  VASServerShutdown()
  interpreter = new WLSTInterpreter();
  private static void connect()
  StringBuffer buffer = new StringBuffer();
  buffer.append("connect(userConfigFile='/usr/VASVijay/VASDomains/VASNewDomain/userconfig',userKeyFile='/usr/VASVijay/VASDomains/VAS
  NewDomain/userkey',url='t3://localhost:8001') \n");
  buffer.append("print(cmo)");
  interpreter.exec(buffer.toString());
  public static void serverShutdown()
  StringBuffer buffer = new StringBuffer();
  buffer.append("shutdown('VASMS1','Server')");
  interpreter.exec(buffer.toString());
  public static void main(String args[])
  new VASServerShutdown();
  connect();
  serverShutdown();
  Let me know if you have any issues or you require something additional.
  Thanks.
  Vijay Bheemineni.
  Edited by: VAS Vijay Bheemineni on Nov 3, 2009 9:18 PM

• Minimum requirement of ODI app deployment

  Hi,
  We have an ODI application in development environment with master repository, work repository, dataserver database source and target database, mapping and transformation rules and scenarios.It is working perfectly and we want to deploy it in production enivronment.We have following questions:
  1.What is the minimum requirement to deploy ODI application in production environment ?
  2.We need to install ODI in production environment as ODI whitepaper suggest.Do we need to import all repositories and scenarios from development environment respective export? Though scenarios are stored in the work repository.
  Thanks
  Brijendra

  Hi,
  Do you have more than one option:
  You can use production as context, it means, just create a production context (you can put a password on it) and then work at same repository that you are developing
  OR
  Create a new WORK repository (I recommend a execution one) where you will import the scenarios generated in the development and have the production totally separated from development.
  I believe that the necessary requirements are the same of development, take a look at the Installation Manual.
  Hope to have helped.

• I have a zte zmax andoid phone it had all the minimum requirement for Skype, I can't get to video ca

  I have a zte zmax Android phone it meets the minimum requirements for Skype, I downloaded Skype thru Google play store I also bought a $10 credit I cannot get it to video call the video icon is not showing up at bottom of screen and when I call other contacts and the icon does show up when I tap on it it does not switch to video call

  Help

• Why is my device not supported even though it meets the minimum requirements?

  My phone is kind of old and Firefox doesn't show up in the Google Play Store, BUT...
  I have sideloaded fennec on my phone and it works fine. I've been using it for two months now. I have had a look at the minimum requirements and even at the apk, but couldn't figure out, what is keeping me from installing ¨the official way¨.
  So what's the reason, that I can't install firefox via the Play Store? This would make updating much easier.
  Thanks in advance!
  Device: HTC Desire (bravo)
  Screen Size: 480x800
  RAM: 576 MB
  Internal Storage: ~150 MB
  Android Version: 2.3.7 (Note: It's a custom rom.)
  processor: ARMv7

  We block the HTC Desire on the Play Store due to poor performance on the device. If you would like to use Firefox anyways you can install the Aurora update channel of Firefox from https://www.mozilla.org/en-US/firefox/channel/#aurora

• HT5624 Hello, how do I reset my encrypted password

  I can't recall my encrypted password for my  back up. How do I remove the password?

  You will have to guess until you get it correct, or you can just make a new backup and start fresh, unless you are on a Mac.  See the instructions below.
  Source: http://support.apple.com/kb/TS5162
  iOS: Troubleshooting encrypted backups
  Symptoms
  When you restore from a backup in iTunes, you may be asked for a password to unlock the backup. Learn what to do if you can't remember or do not know your backup password.
  Resolution
  One of these situations may apply:
  Backup encryption was enabled, but you do not know the password
  An administrator installed a profile on your device that requires backup encryption
  When backup encryption is first enabled, iTunes asks to enter a password and then creates a new encrypted backup for the device. iTunes will continue making encrypted backups until you deselect the Encrypt backup checkbox in the iTunes Device Summary screen. You need the backup password to disable backup encryption or to restore from an encrypted backup. The setting to encrypt backups is stored on the device.
  You can keep trying to restore the device from backup until you remember the password. If you're having trouble, try:
  Leaving the password field blank
  Your Apple ID password
  Your computer account password, if you have one
  Email passwords you may have used
  Your Wi-Fi network password
  Website passwords you may have used
  A password for hard-disk encryption software, if you use it
  If you have ever had a VPN connection or an Exchange email account set up on your iOS device, try using the password associated with those accounts. If you have changed your password for that account in the past, try using an old password. If that doesn’t work, contact the administrator for the account and see if they have a default password enabled on the account.
  Profiles are common when the device is part of an enterprise deployment and may be required for Exchange, VPN, or internal security. Administrators make iOS Profiles using the iPhone Configuration Utility or Apple Configurator. Profiles may enforce backup encryption. The first time your device syncs after such a profile is installed, you must enter a backup password. In some cases, an administrator may have synced the device for you and entered the backup password then. If so, ask the administrator who issued the device to you for the backup password.
  Mac only: Password saved in Keychain
  If you are using OS X, the password might be saved in Keychain Access. Follow these steps to see if this is the case:
  Open iTunes Preferences and select the Devices tab. Note the time of the device’s backup.
  Right-click the desired backup and choose "Show in Finder".
  Finder should now be open, showing the backup selected. Click the Edit menu and choose Copy.
  Open Keychain Access from /Applications/Utilities/.
  Paste the backup folder's name into the search box in the top-right corner of Keychain Access.
  If there is a password for the backup, you should see it in Keychain Access.
  Double-click the backup in Keychain Access.
  Click the button “Show password”.
  You may be asked to enter your login keychain password. After doing so, click Allow. You should see your backup password.
  Use this password to restore from your backup.

• I have forgotten my backup encryption password

  I am getting a new iPhone soon so I wanted to backup my current iPhone to iTunes on my computer.
  However I have forgotten the backup encryption password so I deleted all the backups on iTunes, hoping that it would allow me to reset the backups without the encryption. Is it possible to remove the encyrption without deleting my iTunes? I would like to create a backup from scratch without removing music and videos saved on my iTunes. Help?

  Check your iKeychain.  The password may be listed there.  Mine was listed under an IP address and user name to my old work computer.  I had used my phone to access work emails (government) that were encrypted.  I didn't actually select the option to encrypt my backup itself but it did require a password when I went to restore.  The password ended up being one I set up when I set up my email account to my phone and viewed those emails, not one I actually set for iTunes directly related to the backup.  Once in iKeychain (Safari, Passwords & Autofill) I was able to view a list of all passwords ever used on my phone and had every intention of trying every single password one by one, but it ended up being the first one listed. Hopefully this helps.

• AIP-16076: A wallet password is required for hosted trading partner Oracle

  Hi,
  I have defined a agreement under "Custom Document over Generic Exchange" using File transport protocol.
  I have configured host and remote tp delivery channels with following setup
  i) Encryption Enabled
  ii)Non-repudiation-origin enabled
  iii)Non-repudiation-receipt enabled
  I have created digital certificate using Oracle Wallet Manger application and saved them in B2B file system.
  I have browsed and uploaded digital certificates to B2B during delivery channel creation.
  After completing everything and when I validate the agreement, it throws following error
  AIP-16076: A wallet password is required for hosted trading partner Oracle
  Where I am doing wrong ?
  Should I copy certificates to a specified path ?
  Thanks
  -Praveen

  HI,
  I got it now.
  We have to set Host TP wallet password in General section Host TP B2B UI
  Thanks

• AIP-16076: A wallet password is required for hosted trading partner

  Hi Please help me to resolve this issue.
  B2B version: 10.1.2.2
  OS: AIX 5.3
  Error
  Agreement XYZ is invalid.
  AIP-16076: A wallet password is required for hosted trading partner ABC in agreement XYZ.
  I did create the wallet, imported TD certificate and created wallet.txt and changed the "tip.properties"
  Restarted B2B.
  I did provide password 'welcome' when I create "Transport Servers". Is there any part I am missing. Please help with info to resolve this issue. It's bit important.
  Thanks !
  Rama K

  Hi Guys,
  Thanks for quick reply.
  Here I am experiencing one more isssue. Please let me know, if you have quick ans for this issue.
  <MSG_TEXT>Error -: AIP-51085: General failure encrypting S/MIME message: Error -: AIP-51091: Adding recipient to S/MIME message recipient list failed : Error -: AIP-51162: invalid asn.1 tag.
  at oracle.tip.adapter.b2b.packaging.mime.MimePackaging.createEncryptedMimeBodyPart(MimePackaging.java:513)
  at oracle.tip.adapter.b2b.packaging.mime.MimePackaging.applySecurity(MimePackaging.java:1697)
  at oracle.tip.adapter.b2b.packaging.mime.MimePackaging.createMimeMessage(MimePackaging.java:262)
  at oracle.tip.adapter.b2b.packaging.mime.MimePackaging.pack(MimePackaging.java:110)
  at oracle.tip.adapter.b2b.msgproc.Request.outgoingRequestPostColab(Request.java:1165)
  at oracle.tip.adapter.b2b.msgproc.Request.outgoingRequest(Request.java:701)
  at oracle.tip.adapter.b2b.engine.Engine.processOutgoingMessage(Engine.java:832)
  at oracle.tip.adapter.b2b.data.MsgListener.onMessage(MsgListener.java:531)
  at oracle.tip.adapter.b2b.data.MsgListener.run(MsgListener.java(Compiled Code))
  at java.lang.Thread.run(Thread.java:568)
  Caused by: Error -: AIP-51091: Adding recipient to S/MIME message recipient list failed : Error -: AIP-51162: invalid asn.1 tag.
  at oracle.tip.adapter.b2b.packaging.SmimeSecureMessaging.encrypt(SmimeSecureMessaging.java:1242)
  at oracle.tip.adapter.b2b.packaging.mime.MimePackaging.createEncryptedMimeBodyPart(MimePackaging.java:485)
  ... 9 more
  Caused by: Error -: AIP-51162: invalid asn.1 tag.
  Thanks in Advance,
  Rama K

• How to encrypt password in Forms10g while calling in batch mode

  We are migrating our Forms 6i batch jobs to Forms10g. There are two ways we can pass login
  information.
  1. In formsweb.cfg
  2. Pass in URL string 'userid=username/password@connectstring'
  In both cases the password is not secured. In option # 1 password is in the configuration file in plain text. In
  second option # 2, its in the URL.
  BTW, we are using HTTPS protocol while calling form in batch mode and we are not using SSO.
  Is there a way, we can use data source in frmservlet while calling form in batch mode. Like in Java, we can create data source with indirect password, the password is encrypted.
  Basically, we would like to encrypt our password, we have very strict security guidelines.
  Please let us know if there are any options, how to encrypt password in Forms 10g
  Regards,
  Gufran

  One option maybe the following :
  - Create a file holding the encrpyted username/password on the application server side (in the working directory of your oracle forms application)
  - As a parameter, pass the name of your file to the form
  - when the form is getting called, read the name file in (TEXT_IO) and use the logon built-in with the value from the password file
  How to create an encrpyted file :
  - use the obfuscation toolkit to encrypt username/password@instance into a varchar2
  - write this value to a file using oracle forms (TEXT_IO)
  FUNCTION f_encrypt_string(p_key IN VARCHAR2)
  RETURN VARCHAR2 IS v_encrypt_string VARCHAR2(2000) := 'N/A';
  l_data VARCHAR2(2000);
  BEGIN
  -- if neccessary create a text where the length of the string
  -- is diviteable by 8 (which is a requirement of dbms_obfuscation_toolkit)
  l_data := RPAD(p_key, (TRUNC(LENGTH(p_key)/8)+1)*8, CHR(0));
  DBMS_OBFUSCATION_TOOLKIT.DESEncrypt(input_string => l_data,
  key_string => 'MagicKey',
  encrypted_string=> v_encrypt_string);
  RETURN (v_encrypt_string);
  END;
  Edited by: user434854 on Apr 8, 2009 5:17 AM

• Encryption password in ep5sp5

  HI,
  In instaaltion of ep5sp5 the installer requires an encryption key along with admin user id and password can anybody tell me how this key will be useful after installation .I mean what is use of that key?
  Best Regards,
  Tuhin

  Hi Tuhin,
     I have not done this in SP5.  In Releases prior to SP4 there was a batch utility you had to run to update the passwords  I believe that is where you had to specify encryption password.
  I don't believe it is being used for the private keey generation but I'm not sure.  I don't think there is a security guide for EP5.  You may be able to find the answer in the Administration guide.  For security topics in general, you may look on service marketplace for EP6 Sp2 security guide.  There is lots of good information in there.
  John

• Default Encrypted  Password

  Dear All,
  i want to insert encrypted Password of 'password' string into table user_dtl column PASSWORD .
  How can i insert Encripted password into table.
  Thanks

  Hi Vedant,
  See the CUSTOM_HASH function that is installed with sample application in the APEX.
  Here is the code for it:
  create or replace function custom_hash (p_username in varchar2, p_password in varchar2)
  return varchar2
  is
    l_password varchar2(4000);
    l_salt varchar2(4000) := 'XFSPL28ZTWEWWM6FHWMK68AG5NQVLU';
  begin
  -- This function should be wrapped, as the hash algorithm is exposed here.
  -- You can change the value of l_salt or the method of which to call the
  -- DBMS_OBFUSCATOIN toolkit, but you much reset all of your passwords
  -- if you choose to do this.
  l_password := utl_raw.cast_to_raw(dbms_obfuscation_toolkit.md5
    (input_string => p_password || substr(l_salt,10,13) || p_username ||
      substr(l_salt, 4,10)));
  return l_password;
  end;
  i want to insert encrypted Password of 'password' string into table user_dtl column PASSWORD.The above function will give the encrypted password which can be inserted into USER_DTL as follows:
  INSERT INTO USER_DTL(USERNAME,PASSWORD) VALUES(:P1_USERNAME, CUSTOM_HASH(:P1_USERNAME,:P1_PASSWORD))Be sure that PASSWORD column in USER_DTL is of type VARCHAR2 and of adequate length as to accommodate the encrypted password.
  Hope it helps!
  Regards,
  Kiran