--- title: Salted MD5 Password Storage Scheme (LEGACY) description: "LEGACY since 7.0.0: is insecure. Alternative: A strong hash-based scheme such as one of the schemes enabled by default." component: pingds version: 8.1 page_id: pingds:configref:objects-salted-md5-password-storage-scheme canonical_url: https://docs.pingidentity.com/pingds/8.1/configref/objects-salted-md5-password-storage-scheme.html section_ids: parent: Parent salted_md5_password_storage_scheme_properties: Salted MD5 Password Storage Scheme properties basic_properties: Basic properties enabled: enabled advanced_properties: Advanced properties java-class: java-class --- # Salted MD5 Password Storage Scheme (LEGACY) | | | | - | ----------------------------------------------------------------------------------------------------------------------- | | | LEGACY since 7.0.0: is insecure. Alternative: A strong hash-based scheme such as one of the schemes enabled by default. | The Salted MD5 Password Storage Scheme provides a mechanism for encoding user passwords using a salted form of the MD5 message digest algorithm. This scheme contains an implementation for the user password syntax, with a storage scheme name of "SMD5", and an implementation of the auth password syntax, with a storage scheme name of "MD5". Although the MD5 digest algorithm is relatively secure, recent cryptanalysis work has identified mechanisms for generating MD5 collisions. This does not impact the security of this algorithm as it is used in PingDS, but it is recommended that the MD5 password storage scheme only be used if client applications require it for compatibility purposes, and that a stronger digest like SSHA or SSHA256 be used for environments in which MD5 support is not required. ## Parent The Salted MD5 Password Storage Scheme object inherits from [Password Storage Scheme](objects-password-storage-scheme.html). ## Salted MD5 Password Storage Scheme properties You can use configuration expressions to set property values at startup time. For details, see [Property value substitution](expressions.html). | Basic Properties | Advanced Properties | | ------------------- | ------------------------- | | [enabled](#enabled) | [java-class](#java-class) | ### Basic properties Use the `--advanced` option to access advanced properties. ### enabled | | | | ----------------------- | ----------------------------------------------------------------- | | *Synopsis* | Indicates whether the Password Storage Scheme is enabled for use. | | *Default value* | None | | *Allowed values* | truefalse | | *Multi-valued* | No | | *Required* | Yes | | *Admin action required* | None | | *Advanced* | No | | *Read-only* | No | ## Advanced properties Use the `--advanced` option to access advanced properties. ### java-class | | | | ----------------------- | ------------------------------------------------------------------------------------------------------------------------- | | *Synopsis* | Specifies the fully-qualified name of the Java class that provides the Salted MD5 Password Storage Scheme implementation. | | *Default value* | org.opends.server.extensions.SaltedMD5PasswordStorageScheme | | *Allowed values* | A Java class that extends or implements:- org.opends.server.api.PasswordStorageScheme | | *Multi-valued* | No | | *Required* | Yes | | *Admin action required* | None | | *Advanced* | Yes | | *Read-only* | No |