This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(124.80000000000001, 50%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EP%3C/text%3E%3C/svg%3E)
Can we encrypt only username using basic authentication in PowerShell ? The below example shows for both username and password encrypted using basic authentication. or do we have anything that converts the username in base64 instead of passing as a plain text (hardcoded) likewise we use secure string for passwords.
$user = 'user'
$pass = 'pass'
$securePassword = (ConvertTo-SecureString $Password -AsPlainText -Forc
$pair = "$($user):$( $securePassword)"
$encodedCreds = [System.Convert]::ToBase64String([System.Text.Encoding]::ASCII.GetBytes($pair))
$basicAuthValue = "Basic $encodedCreds"
$Headers = @{
Authorization = $basicAuthValue
}
Invoke-WebRequest -Uri 'https://whatever' -Headers $Headers
Hi @Swabha ,
something like this?
$userName = "Luigi"
$encryptedUserName = $userName | ConvertTo-SecureString -AsPlainText -Force
$encryptedUserName
(If the reply was helpful please don't forget to upvote and/or accept as answer, thank you)
Regards
Andreas Baumgarten
Thank you so much for your response. I have tried it but not working in my case.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(256, 74%, 34%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERM%3C/text%3E%3C/svg%3E)
Try this:
$barray = [System.Text.Encoding]::UTF8.GetBytes("MyUserName")
$b64 = [System.Convert]::ToBase64String($barray)
Thank you so much for your response. I have tried it but not working in my case.
You have to adhere to internet standards.
https://developer.mozilla.org/en-US/docs/Web/HTTP/Authentication
Basic authentication scheme
The "Basic" HTTP authentication scheme is defined in RFC 7617, which transmits credentials as user ID/password pairs, encoded using base64.
Security of basic authentication
As the user ID and password are passed over the network as clear text (it is base64 encoded, but base64 is a reversible encoding), the basic authentication scheme is not secure. HTTPS/TLS should be used with basic authentication. Without these additional security enhancements, basic authentication should not be used to protect sensitive or valuable information.
That's a lesson learned many (many!) years ago with SMTP. :-)
Thank you for your responses. I will try check it out.
I have tried it like below :
Param (
[Parameter(Mandatory=$true) ]
[String]$user,
[Parameter(Mandatory=$true)]
[String]$Pass
)
$encryptedUser = (ConvertTo-SecureString -AsPlainText -Force $user),
$encryptedPwd = (ConvertTo-SecureString -AsPlainText -Force $Pass),
$b = [System.Text.Encoding]::UTF8.GetBytes($encryptedUser + ":" + $encryptedPwd ),
$p = [System.Convert]::ToBase64String($b),
$creds = "Basic " + $p
But got the below error :
cmdlet sitecorewarmupscript.ps1 at command pipeline position 1
Supply values for the following parameters:
Method invocation failed because [System.Security.SecureString] does not contain a method named 'op_Addition'.
At line:1 char:1
Expected result should be : if the params are as securestrings, they will be hidden with ******, therefore not viewable in console
You're trying to use a string operation on an object that isn't a string. Nowhere did I say, nor did you request, that you could encode an SecureString object.
This is what you asked:
converts the username in base64 instead of passing as a plain text
He's got code embedded in his parameter definition too.
Basically converting the username in base64 instead of passing as a plain text is not required so we have changed the plan.
I have updated the code and updated the secure string variables to outside of the parameter definition.