Password migration from ForgeRock to Auth0 (Okta CIC)

aditya.b.gautam · September 23, 2024, 7:37am

Hi Experts,

We need to migrate users from “ForgeRock” to “Okta CIC”. From the user export, I can see currently password is salted hash as below:

userPassword: {SSHA512}dP6RRV0oJGlhpLAHeyTU1sVcaG71eBJp9xbDFS7MalYgb4o0+6dT530EKlnms3dKYXX/InNQ2nhgIOHq3Jndl2E4yNIJftmOw/a/CjrtIa4=

Imported user into Okta CIC, imported successfully:

[{
        "email": "mytest098768@gmail.com",
        "email_verified": true,
        "custom_password_hash": {
            "algorithm": "sha512",
            "hash": {
                "value": "dP6RRV0oJGlhpLAHeyTU1sVcaG71eBJp9xbDFS7MalYgb4o0+6dT530EKlnms3dKYXX/InNQ2nhgIOHq3Jndl2E4yNIJftmOw/a/CjrtIa4=",
				"encoding": "base64"
            }
        }
    }
]

But when I am trying to authenticate it’s not letting me, and log says below error. If anyone could help.

"{
        "error": {
            "message": "Password change required.",
            "reason": "Verification failed for the provided custom_password_hash: {'algorithm':'sha512','hash':{'value':'dP6RRV0oJGlhpLAHeyTU1sVcaG7...','encoding':'base64'},'salt':{'value':''}}"
        }
    }

Manys thanks,
Aditya