Internal_users.yml change hash algorithm

erhan · April 16, 2021, 9:08am

Hey everyone,

in the internal_users.yml file you can set internal users. Is it possible to use SHA512 hash for the password instead of bcrypt for compliance reasons. If so, how do you do it?

Take care and stay safe!

Mian · May 6, 2021, 5:56am

Hi,

I need this information, too.

Thanks

pablo · August 16, 2021, 12:39am

Hi @erhan

I’ve tried to use SHA512 encrypted password in internal_users.yml and the security plugin failed to initialize.
Only the bcrypt worked for me. Also, in documentation, only the bcrypt hashing is mentioned.

conicob · October 20, 2022, 10:58pm

I am also interested in having an option to change the hashing algorithm for improved security.
I see that ElasticSearch has configuration values for
password hashing algorithms, Security settings in Elasticsearch | Elasticsearch Guide [7.9] | Elastic, but I am not sure if that was part of additional enterprise features.

pablo · October 21, 2022, 8:54am

@conicob I’d suggest opening a feature request in the OpenSearch GitHub

Please share the GitHub issue here.

Topic		Replies	Views
Default Password Reset Security	13	16889	February 2, 2021
Path to internal_users.yml change admin password Security troubleshoot , configure	9	1474	June 17, 2022
Set simple password Security configure	3	407	July 22, 2022
Changing admin password in internal_users has no effect Security	2	1327	February 12, 2021
Change password in OpenSearch 2.x and docker Security	1	1020	May 31, 2022

Internal_users.yml change hash algorithm

Related Topics