Hashing Algorithm

Document ID : KB000117358
Last Modified Date : 11/10/2018
Show Technical Document Details
I'm running SPS and I'd like to know if CA Access Gateway (SPS) offers support for Hashing algorithm to authenticate with User + Password in Hashing format. Is this possible?
CA Access Gateway (SPS) Authentication and Authorization Web Services support login and blogin on SOAP and REST request, which aren't in Hashing algorithm format :

"Configuring the Authentication and Authorization Web Services 

These web services support the SOAP 1.2 protocol and the HTTP-based 
RESTful architecture using the POST method. The authentication and 
authorization web services provide the following functionality: 

login -- Authenticates and returns a session token when the 
authentication is successful. 

Note: If the Enable User Tracking option is enabled, the response 
contains an identity token additionally. 

blogin -- Authenticates and verifies whether the login is successful; 
does not return a session token. 

logout -- Logs out the user or group 
of users. 

authorize -- Returns an authorization status message and a 
refreshed session token."


As such, there is no Hashing Algorithm supported inside these Web Service. The only encoded way to pass credentials is to use a certificate as login. For more information on this, you can check the following:
What is the Purpose of <binaryCreds></binaryCreds> from Body Section in SPS WS Auth/AZ ? 

Then, in order to get the CA Access Gateway (SPS) enhanced to support Hashing Algorithm for login or blogin in Authentication and Authorization Web Services, please open an Idea on CA Communities.