What is the encryption algorithm used to encrypt a user's password for SSO applications in Active Directory?
SSOData is encrypted by an SSO key which is always AES 128 - this is not configurable.
In turn, this SSO key is encrypted by the authentication method used:
- In password mode : AES 128 derived from the user password
- In smart card mode: depends on the XML file. In general RSA 1024 or 2048.
As per the release notes, in ESSO 8 Evolution 3: