Name

dsconfig delete-password-storage-scheme — Deletes Password Storage Schemes

Synopsis

dsconfig delete-password-storage-scheme {options}

Description

Deletes Password Storage Schemes.

Options

The dsconfig delete-password-storage-scheme command takes the following options:

--scheme-name {name}

The name of the Password Storage Scheme.

Password Storage Scheme properties depend on the Password Storage Scheme type, which depends on the {name} you provide.

By default, OpenDJ directory server supports the following Password Storage Scheme types:

aes-password-storage-scheme

Default {name}: AES Password Storage Scheme

Enabled by default: true

See the section called “AES Password Storage Scheme” for the properties of this Password Storage Scheme type.

base64-password-storage-scheme

Default {name}: Base64 Password Storage Scheme

Enabled by default: true

See the section called “Base64 Password Storage Scheme” for the properties of this Password Storage Scheme type.

bcrypt-password-storage-scheme

Default {name}: Bcrypt Password Storage Scheme

Enabled by default: true

See the section called “Bcrypt Password Storage Scheme” for the properties of this Password Storage Scheme type.

blowfish-password-storage-scheme

Default {name}: Blowfish Password Storage Scheme

Enabled by default: true

See the section called “Blowfish Password Storage Scheme” for the properties of this Password Storage Scheme type.

clear-password-storage-scheme

Default {name}: Clear Password Storage Scheme

Enabled by default: true

See the section called “Clear Password Storage Scheme” for the properties of this Password Storage Scheme type.

crypt-password-storage-scheme

Default {name}: Crypt Password Storage Scheme

Enabled by default: true

See the section called “Crypt Password Storage Scheme” for the properties of this Password Storage Scheme type.

md5-password-storage-scheme

Default {name}: MD5 Password Storage Scheme

Enabled by default: true

See the section called “MD5 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pbkdf2-hmac-sha256-password-storage-scheme

Default {name}: PBKDF2 Hmac SHA256 Password Storage Scheme

Enabled by default: true

See the section called “PBKDF2 Hmac SHA256 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pbkdf2-hmac-sha512-password-storage-scheme

Default {name}: PBKDF2 Hmac SHA512 Password Storage Scheme

Enabled by default: true

See the section called “PBKDF2 Hmac SHA512 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pkcs5s2-password-storage-scheme

Default {name}: PKCS5S2 Password Storage Scheme

Enabled by default: true

See the section called “PKCS5S2 Password Storage Scheme” for the properties of this Password Storage Scheme type.

rc4-password-storage-scheme

Default {name}: RC4 Password Storage Scheme

Enabled by default: true

See the section called “RC4 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-md5-password-storage-scheme

Default {name}: Salted MD5 Password Storage Scheme

Enabled by default: true

See the section called “Salted MD5 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha1-password-storage-scheme

Default {name}: Salted SHA1 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA1 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha256-password-storage-scheme

Default {name}: Salted SHA256 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA256 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha384-password-storage-scheme

Default {name}: Salted SHA384 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA384 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha512-password-storage-scheme

Default {name}: Salted SHA512 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA512 Password Storage Scheme” for the properties of this Password Storage Scheme type.

sha1-password-storage-scheme

Default {name}: SHA1 Password Storage Scheme

Enabled by default: true

See the section called “SHA1 Password Storage Scheme” for the properties of this Password Storage Scheme type.

triple-des-password-storage-scheme

Default {name}: Triple DES Password Storage Scheme

Enabled by default: true

See the section called “Triple DES Password Storage Scheme” for the properties of this Password Storage Scheme type.

-f | --force

Ignore non-existent Password Storage Schemes.

Password Storage Scheme properties depend on the Password Storage Scheme type, which depends on the null you provide.

By default, OpenDJ directory server supports the following Password Storage Scheme types:

aes-password-storage-scheme

Default null: AES Password Storage Scheme

Enabled by default: true

See the section called “AES Password Storage Scheme” for the properties of this Password Storage Scheme type.

base64-password-storage-scheme

Default null: Base64 Password Storage Scheme

Enabled by default: true

See the section called “Base64 Password Storage Scheme” for the properties of this Password Storage Scheme type.

bcrypt-password-storage-scheme

Default null: Bcrypt Password Storage Scheme

Enabled by default: true

See the section called “Bcrypt Password Storage Scheme” for the properties of this Password Storage Scheme type.

blowfish-password-storage-scheme

Default null: Blowfish Password Storage Scheme

Enabled by default: true

See the section called “Blowfish Password Storage Scheme” for the properties of this Password Storage Scheme type.

clear-password-storage-scheme

Default null: Clear Password Storage Scheme

Enabled by default: true

See the section called “Clear Password Storage Scheme” for the properties of this Password Storage Scheme type.

crypt-password-storage-scheme

Default null: Crypt Password Storage Scheme

Enabled by default: true

See the section called “Crypt Password Storage Scheme” for the properties of this Password Storage Scheme type.

md5-password-storage-scheme

Default null: MD5 Password Storage Scheme

Enabled by default: true

See the section called “MD5 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pbkdf2-hmac-sha256-password-storage-scheme

Default null: PBKDF2 Hmac SHA256 Password Storage Scheme

Enabled by default: true

See the section called “PBKDF2 Hmac SHA256 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pbkdf2-hmac-sha512-password-storage-scheme

Default null: PBKDF2 Hmac SHA512 Password Storage Scheme

Enabled by default: true

See the section called “PBKDF2 Hmac SHA512 Password Storage Scheme” for the properties of this Password Storage Scheme type.

pkcs5s2-password-storage-scheme

Default null: PKCS5S2 Password Storage Scheme

Enabled by default: true

See the section called “PKCS5S2 Password Storage Scheme” for the properties of this Password Storage Scheme type.

rc4-password-storage-scheme

Default null: RC4 Password Storage Scheme

Enabled by default: true

See the section called “RC4 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-md5-password-storage-scheme

Default null: Salted MD5 Password Storage Scheme

Enabled by default: true

See the section called “Salted MD5 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha1-password-storage-scheme

Default null: Salted SHA1 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA1 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha256-password-storage-scheme

Default null: Salted SHA256 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA256 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha384-password-storage-scheme

Default null: Salted SHA384 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA384 Password Storage Scheme” for the properties of this Password Storage Scheme type.

salted-sha512-password-storage-scheme

Default null: Salted SHA512 Password Storage Scheme

Enabled by default: true

See the section called “Salted SHA512 Password Storage Scheme” for the properties of this Password Storage Scheme type.

sha1-password-storage-scheme

Default null: SHA1 Password Storage Scheme

Enabled by default: true

See the section called “SHA1 Password Storage Scheme” for the properties of this Password Storage Scheme type.

triple-des-password-storage-scheme

Default null: Triple DES Password Storage Scheme

Enabled by default: true

See the section called “Triple DES Password Storage Scheme” for the properties of this Password Storage Scheme type.

AES Password Storage Scheme

Password Storage Schemes of type aes-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the AES Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.AESPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Base64 Password Storage Scheme

Password Storage Schemes of type base64-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Base64 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.Base64PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Bcrypt Password Storage Scheme

Password Storage Schemes of type bcrypt-password-storage-scheme have the following properties:

bcrypt-cost
Description

The cost parameter specifies a key expansion iteration count as a power of two. A default value of 12 (2^12 iterations) is considered in 2016 as a reasonable balance between responsiveness and security for regular users.

Default Value

12

Allowed Values

An integer value. Lower value is 1. Upper value is 30.

Multi-valued

No

Required

No

Admin Action Required

None

Advanced Property

No

Read-only

No

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Bcrypt Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.BcryptPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Blowfish Password Storage Scheme

Password Storage Schemes of type blowfish-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Blowfish Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.BlowfishPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Clear Password Storage Scheme

Password Storage Schemes of type clear-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Clear Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.ClearPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Crypt Password Storage Scheme

Password Storage Schemes of type crypt-password-storage-scheme have the following properties:

crypt-password-storage-encryption-algorithm
Description

Specifies the algorithm to use to encrypt new passwords. Select the crypt algorithm to use to encrypt new passwords. The value can either be "unix", which means the password is encrypted with the weak Unix crypt algorithm, or "md5" which means the password is encrypted with the BSD MD5 algorithm and has a $1$ prefix, or "sha256" which means the password is encrypted with the SHA256 algorithm and has a $5$ prefix, or "sha512" which means the password is encrypted with the SHA512 algorithm and has a $6$ prefix.

Default Value

unix

Allowed Values
md5

New passwords are encrypted with the BSD MD5 algorithm.

sha256

New passwords are encrypted with the Unix crypt SHA256 algorithm.

sha512

New passwords are encrypted with the Unix crypt SHA512 algorithm.

unix

New passwords are encrypted with the Unix crypt algorithm. Passwords are truncated at 8 characters and the top bit of each character is ignored.

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Crypt Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.CryptPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

MD5 Password Storage Scheme

Password Storage Schemes of type md5-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the MD5 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.MD5PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

PBKDF2 Hmac SHA256 Password Storage Scheme

Password Storage Schemes of type pbkdf2-hmac-sha256-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the PBKDF2 Hmac SHA256 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.PBKDF2HmacSHA256PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

pbkdf2-iterations
Description

The number of algorithm iterations to make. NIST recommends at least 1000.

Default Value

10000

Allowed Values

An integer value. Lower value is 1.

Multi-valued

No

Required

No

Admin Action Required

None

Advanced Property

No

Read-only

No

PBKDF2 Hmac SHA512 Password Storage Scheme

Password Storage Schemes of type pbkdf2-hmac-sha512-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the PBKDF2 Hmac SHA512 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.PBKDF2HmacSHA512PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

pbkdf2-iterations
Description

The number of algorithm iterations to make. NIST recommends at least 1000.

Default Value

10000

Allowed Values

An integer value. Lower value is 1.

Multi-valued

No

Required

No

Admin Action Required

None

Advanced Property

No

Read-only

No

PKCS5S2 Password Storage Scheme

Password Storage Schemes of type pkcs5s2-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the PKCS5S2 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.PKCS5S2PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

RC4 Password Storage Scheme

Password Storage Schemes of type rc4-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the RC4 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.RC4PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Salted MD5 Password Storage Scheme

Password Storage Schemes of type salted-md5-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Salted MD5 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SaltedMD5PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Salted SHA1 Password Storage Scheme

Password Storage Schemes of type salted-sha1-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Salted SHA1 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SaltedSHA1PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Salted SHA256 Password Storage Scheme

Password Storage Schemes of type salted-sha256-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Salted SHA256 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SaltedSHA256PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Salted SHA384 Password Storage Scheme

Password Storage Schemes of type salted-sha384-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Salted SHA384 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SaltedSHA384PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Salted SHA512 Password Storage Scheme

Password Storage Schemes of type salted-sha512-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Salted SHA512 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SaltedSHA512PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

SHA1 Password Storage Scheme

Password Storage Schemes of type sha1-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the SHA1 Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.SHA1PasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No

Triple DES Password Storage Scheme

Password Storage Schemes of type triple-des-password-storage-scheme have the following properties:

enabled
Description

Indicates whether the Password Storage Scheme is enabled for use.

Default Value

None

Allowed Values

true

false

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

No

Read-only

No

java-class
Description

Specifies the fully-qualified name of the Java class that provides the Triple DES Password Storage Scheme implementation.

Default Value

org.opends.server.extensions.TripleDESPasswordStorageScheme

Allowed Values

A Java class that implements or extends the class(es): org.opends.server.api.PasswordStorageScheme

Multi-valued

No

Required

Yes

Admin Action Required

None

Advanced Property

Yes (Use --advanced in interactive mode.)

Read-only

No