You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
On October 25, 2024 Apple implemented the Secure Remote Password verification protocol. This method of password validation where the host (Apple) calculates a hash key based on the password value. The client (iCloud3/you) also calculates a hash key based on the password. Then that hash key is sent to Apple and compared with the one they calculate. If they are the same, the password is valid, if it is different, it is not valid. The benefit is the actual password is never sent inverted the internet, only the hash key.
The code that calculates the Secure Remote Password in Python is new. As mentioned above, iCloud3 does the calculation and Apple does the calculation. Apple compares the results. Your password, after passing through the Python calculator, is different even though your password is correct and was validated be iCloud3 using a different method.
This message is displayed in the Event Log:
Try this first:
On the Configure Settings > Enter/Request Verification screen, select ‘Request a New Verification Code’ and Submit. This will reset everything related to your current login session. A new 6-digit certificate will be generated and the password validation process will be done again. The hash key will be recalculated and sent to Apple for verification.
If you get the same error message:
You need to change your password. There is something wrong with the Python code calculating your hash key with the password you are using.
Changing your password will reset all of your App Specific Passwords.
Other users have had the same problem, changed their password and were then able to login again.
The writers of that code are collecting passwords that fail to correct their algorithm. They do not need your email address so they never know where it came from.
I would appreciate it if you would send me your failed password and I will send it to them. Email it to [email protected] with a subject of SRP Failed Password so it doesn’t get lost in all my other emails.
Thanks for sending it.
Gary
The text was updated successfully, but these errors were encountered:
gcobb321
changed the title
SRP Password
➤ Password SRP Error Message
Nov 9, 2024
On October 25, 2024 Apple implemented the Secure Remote Password verification protocol. This method of password validation where the host (Apple) calculates a hash key based on the password value. The client (iCloud3/you) also calculates a hash key based on the password. Then that hash key is sent to Apple and compared with the one they calculate. If they are the same, the password is valid, if it is different, it is not valid. The benefit is the actual password is never sent inverted the internet, only the hash key.
The code that calculates the Secure Remote Password in Python is new. As mentioned above, iCloud3 does the calculation and Apple does the calculation. Apple compares the results. Your password, after passing through the Python calculator, is different even though your password is correct and was validated be iCloud3 using a different method.
This message is displayed in the Event Log:
Try this first:
On the Configure Settings > Enter/Request Verification screen, select ‘Request a New Verification Code’ and Submit. This will reset everything related to your current login session. A new 6-digit certificate will be generated and the password validation process will be done again. The hash key will be recalculated and sent to Apple for verification.
If you get the same error message:
You need to change your password. There is something wrong with the Python code calculating your hash key with the password you are using.
Changing your password will reset all of your App Specific Passwords.
Other users have had the same problem, changed their password and were then able to login again.
The writers of that code are collecting passwords that fail to correct their algorithm. They do not need your email address so they never know where it came from.
I would appreciate it if you would send me your failed password and I will send it to them. Email it to [email protected] with a subject of SRP Failed Password so it doesn’t get lost in all my other emails.
Thanks for sending it.
Gary
The text was updated successfully, but these errors were encountered: