Secrets In Scripts - Hirschmann RS20 Reference Manual
Industrial, gigabit
Hide thumbs
Also See for RS20:
- Reference manual (572 pages) ,
- User manual (294 pages) ,
- Programming manual (116 pages)
Table of Contents
Advertisement
Command Structure
1.1.8 Secrets in scripts
A configuration may include secrets (e. g., passwords). When creating a
script, these secrets are written to it in a scrambled form, not in clear text.
These secrets may be up to 31 characters long. The format for a scrambled
secret is: ":v1:<scrambled secret>:" (without the quotes ("), they were added
for readability). v1 denotes the scrambling method (v1 in this case), the value
of the scrambled secret is a 64-digit hex string.
The following commands produce scrambled secrets (if necessary):
Command
ip ospf authentication encrypt <secret> <id>
ip ospf authentication simple <secret>
ip rip authentication encrypt <secret> <id>
ip rip authentication simple <secret>
ip vrrp <id> authentication simple <secret>
radius server key acct <ip> <password>
radius server key auth <ip> <password>
users passwd <username> <password>
users snmpv3 encryption <username> des <password>
Tab. 7: Commands in Global Config mode
Command
area <ip> virtual-link <ip> authentication encrypt <secret> <id>
area <ip> virtual-link <ip> authentication simple <secret>
Tab. 8: Commands in Router OSPF mode (software L3P)
Applying or validating a script requires the following conditions for a scram-
bled secret, else it will be considered invalid (usually only relevant if a script
is edited manually):
D
string must not be longer than 64 hex digits
D
string must only contain the digits 0-9 and the characters A-F (or a-f)
D
string length must be even
20
1.1 Format
Note
Software L3P
Software L3P
Software L3E and L3P
Software L3E and L3P
Software L3E and L3P
Note
Encrypted Authentication
Simple Authentication
Release 4.0 11/07
CLI L2B
- Quick Links:
- Show Arp Switch
Hide quick links:
Advertisement
Table of Contents
