How does Luminis encrypt / unencrypt passwords for other systems?
I'm doing a bit of analysis and was wondering if someone could further clarify my research concerning how Luminis is using the passwords for other systems.
It is my understanding that when Luminis is told the password, it then SHA encrypts the password with the key being Luminis's actual login password. That way nobody can just unencrypt the 1 password unless they know the other.
Is this the way it works?
Sounds right
It's been over five years since I last looked at in detail, but that is my recollection... it uses the actual user password from their login session to encrypt/decrypt all other secret store passwords.
Todd