So hash the password initially using nlapiencrypt then I guess do the same to whatever's provided and compare?