You are viewing limited content. For full access, please sign in.

Question

Question

Bulk Upload into dbo.trustee

Version 9 Security
Updated June 13, 2014
asked on June 11, 2014

We have over a thousand read-only users who have passwords that need changing every year.  We would like to write a SQL query or a script to do this directly in the dbo.trustee table.  I believe we cannot use the XML download and re-load function in the Administration Console because the XML schema does not capture the passwords.

 

Can anyone share their experience in working directly with database tables in LaserFiche 9.1?

Does the fact that the passwords need to be encrypted complicate things?

 

Thanks,  Kathy

0 0

Answer

SELECTED ANSWER
replied on June 11, 2014

Have you investigated the SDK?  I suspect that is the only "official" way to do this.

0 0

Replies

replied on June 11, 2014

You are correct in assuming that the encryption will keep you from doing what you ask. You'll notice that in addition to the password hash, there is also a salt value. The salt is mixed in with the plain text and then encrypted into the hash. This algorithm will only be available from within Laserfiche.

 

Can't you just set their passwords to expire? WebLink supports allowing the user to change their own password and can notify them when it's due for change.

0 0
replied on June 11, 2014

Thanks, Devin.  That is what I thought.  I am going to re-post my question with a broader scope.  These are read only users and that the user who is assigned to them changes every year, so we’re looking for a way to create them en masse, or edit them en masse, without having to individually assign passwords.  From your answer I can see that there is not a way to accomplish that by directly editing the dbo.trustees table.

Kathy

0 0
replied on June 12, 2014

The Laserfiche SDK ships with libraries that allow you to change users' passwords, to create user accounts, to delete user accounts, and to enumerate the user accounts. The recommended approach is to write a program which iterates through the users and changes their password using the official Laserfiche libraries in the SDK. The "trustee" table should not be directly modified. The details of its layout as well as the password hash algorithm may change from release to release.

0 0
replied on June 13, 2014

Excellent!  Thank you very much.

 

Kathy

0 0
You are not allowed to follow up in this post.

Sign in to reply to this post.

Details
Related Posts
Loading ...