Found this a while ago when I wanted to know if I could use MD5 for password hashing or if Kentico had some other hashing other than SHA1.

private static string GetPasswordHash(string password, string passwordFormat)
{
    string str;
    if (passwordFormat != null)
    {
        passwordFormat = passwordFormat.ToLower().Trim();
    }
    if (((str = passwordFormat) != null) && (str == "sha1"))
    {
        return FormsAuthentication.HashPasswordForStoringInConfigFile(password, "sha1");
    }
    return password;
}

I reflected the CMS.SiteProvider assembly and I basically get the option of clear text, or SHA1. Can’t even salt the password. :(

I guess if you want something better you have to do it yourself.