Copied to clipboard

Flag this post as spam?

This post will be reported to the moderators as potential spam to be looked at


  • Arif 12 posts 81 karma points
    1 week ago
    Arif
    0

    change validation from SHA1 to HMACSHA256

    We have been using SHA1 as validation key in our machine config for our application which is hosted on Microsoft Azure with Umbraco version 7.2.8.

    Recently Microsoft upgraded their security algorithm by changing validation key as HMACSHA256 for increasing level of security.

    Due to this change, none of our existing user were able to log in to our application.

    We raised same issue with Microsoft which was ended with following conclusion -

    1. HMACSHA256 is the latest and more secure algorithm introduced by them.
    2. They have advised us to check Umbraco compatibility with HMACSHA256.

    Could you please provide us an appropriate solution.

    Thanks in Advance !!!

  • Dan Diplo 1291 posts 4808 karma points MVP 2x c-trib
    1 week ago
    Dan Diplo
    0

    Here's a bit of background info that may be of use from Shannon - https://shazwazza.com/post/umbraco-passwords-and-aspnet-machine-keys

Please Sign in or register to post replies

Write your reply to:

Draft