The InitializeUserDetailsBeanManagerConfigurer should inject the PasswordEncoder into the constructor of DaoAuthenticationProvider to prevent the unnecessary execution of PasswordEncoderFactories.createDelegatingPasswordEncoder() which causes issues for users with FIPS compliant JDKs. See https://github.com/spring-projects/spring-security/issues/14670