Does anyone know what hashing algorithm BO uses to store the passwords? I am trying to integrate our single sign on component with WebI.
Thanks,
Jason
codeman (BOB member since 2004-10-21)
Can’t you integrate via LDAP instead of trying to “hack” the password algorithm of Business Objects?
Andreas 
(BOB member since 2002-06-20)
I would love to utilize LDAP…if I had it at my disposal. I’m working with some constraints that don’t jive too well with BO. My SSO module pushes SAML to applications or external apps pull SAML from the SSO module.
I was considering switching BO to Basic Mode for authentication and then wrapping WebI with a servlet that understands SAML…then set it up so that SAML is pushed to it, if the SAML is deemed valid, redirect to the login page to initialize the WebI session. However, I think there could be some potential security holes with such a setup.
Therefore I’d really like my passwords in my main authentication data source to match up with the password in the BO repository…i.e. i would create a trigger to update an actor’s password from the main authentication database. Then I could have BO pull authentication data from my main authentication datasource…I think this would be more secure.
I’m open to suggestions though, I’m trying to think of as many approaches to this problem as I can…and I’m a BO newbie so I might be missing something obvious.
Jason
codeman (BOB member since 2004-10-21)
I think a post in last couple of weeks mentoined some C++ app that used to ship with eralier versions of BO. Source code of that app had this algo.
shamit (BOB member since 2004-07-01)
Did you get BO to work with SAML??
Thanks,
Charles Killam 
(BOB member since 2003-04-24)