J
Jonathan Wood
I've decided my site needs the ability to retrieve existing passwords
without generating a new one. So I need to change passwordFormat from
"Hashed" to "Encrypted".
However, I'm not sure this is working. I tried setting it to "Encrypted"
(and also created a machineKey entry), but then my existing logins continued
to work and it seems like they shouldn't. So I then tried setting it to
"Clear". I'm still able to login but, when I examine the raw
aspnet_Membership table, I see the password fields are still unreadable.
Questions:
1. Is there something else I need to change to modify the way passwords are
stored?
2. Is there any way to do so without losing all my existing logins?
Thanks for any tips!
without generating a new one. So I need to change passwordFormat from
"Hashed" to "Encrypted".
However, I'm not sure this is working. I tried setting it to "Encrypted"
(and also created a machineKey entry), but then my existing logins continued
to work and it seems like they shouldn't. So I then tried setting it to
"Clear". I'm still able to login but, when I examine the raw
aspnet_Membership table, I see the password fields are still unreadable.
Questions:
1. Is there something else I need to change to modify the way passwords are
stored?
2. Is there any way to do so without losing all my existing logins?
Thanks for any tips!