password hash
$h$6$Twd73mLrN8O2vvD5$Cz1vgdpR4KoTiRQNE9pg33gU14Br2p1VguczLSVyJLO2huV5Syx/LfDIf8ROLtV
ErJ/C31oq2rFtmNuyZf4STw==
service-type ssh telnet terminal
authorization-attribute user-role network-admin
authorization-attribute user-role network-operator
#
interface Vlan-interface1
ip address 192.168.1.84 255.255.255.0
#
FIPS compliance
The device supports the FIPS mode that complies with NIST FIPS 140-2 requirements. Support for
features, commands, and parameters might differ in FIPS mode and non-FIPS mode. For more
information about FIPS mode, see Security Configuration Guide.
Enabling configuration encryption
Configuration encryption enables the device to encrypt a startup configuration file automatically
when it saves the running configuration. All devices running Comware 7 software use the same
method to encrypt configuration files.
NOTE:
Any devices running Comware 7 software can decrypt the encrypted configuration files. To prevent
an encrypted file from being decoded by unauthorized users, make sure the file is accessible only to
authorized users.
To enable configuration encryption:
Step
Enter system view.
1.
Enable configuration
2.
encryption.
Comparing configurations for their differences
You can compare configuration files or compare a configuration file with the running configuration for
their differences.
If you specify the next-startup configuration for a comparison, the system selects the next-startup
configuration file to be compared with in the following order:
The main next-startup configuration file.
1.
The backup next-startup configuration file if the main next-startup configuration file is
2.
unavailable.
If both the main and backup next-startup configuration files are unavailable, the system displays a
message indicating that no next-startup configuration files exist.
To compare configurations for their differences in any view:
Command
system-view
configuration encrypt { private-key |
public-key }
100
Remarks
N/A
By default, configuration
encryption is disabled.
Configuration is saved
unencrypted.