Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at


  • Arif 23 posts 92 karma points
    Jun 13, 2018 @ 10:57
    Arif
    0

    change validation from SHA1 to HMACSHA256

    We have been using SHA1 as validation key in our machine config for our application which is hosted on Microsoft Azure with Umbraco version 7.2.8.

    Recently Microsoft upgraded their security algorithm by changing validation key as HMACSHA256 for increasing level of security.

    Due to this change, none of our existing user were able to log in to our application.

    We raised same issue with Microsoft which was ended with following conclusion -

    1. HMACSHA256 is the latest and more secure algorithm introduced by them.
    2. They have advised us to check Umbraco compatibility with HMACSHA256.

    Could you please provide us an appropriate solution.

    Thanks in Advance !!!

  • Dan Diplo 1554 posts 6205 karma points MVP 5x c-trib
    Jun 14, 2018 @ 11:25
    Dan Diplo
    0

    Here's a bit of background info that may be of use from Shannon - https://shazwazza.com/post/umbraco-passwords-and-aspnet-machine-keys

Please Sign in or register to post replies

Write your reply to:

Draft