Enabling Encrypt-Credentials - HP 3500yl Series Access Security Manual
Switch software
Hide thumbs
Also See for 3500yl Series:
- Release notes (219 pages) ,
- Specifications (16 pages) ,
- Features (6 pages)
Table of Contents
Advertisement
Configuring Username and Password Security
Encrypting Credentials in the Configuration File
2-30
Only the aes-256-cbc encryption type is available.
Enabling Encrypt-Credentials
To enable encrypt-credentials, enter this command.
Syntax: [no] encrypt-credentials [pre-shared-key <plaintext | hex>]
When encrypt-credentials is enabled without any parameters,
it enables the encryption of relevant security parameters in
the configuration.
The no form of the command disables the encrypt-credentials
feature. If specified with pre-shared-key option, clears the pre-
shared-key used to encrypt credentials.
pre-shared-key: When specified, sets the pre-shared-key that is
used for all AES encryption. If no key is set, an HP switch
default AES key is used.
Default: HP switch default AES key
plaintext: Set the key using plaintext.
hex: Set the key as a 64 hexadecimal character string (32
bytes). You must enter 64 hexadecimal digits to set this
key.
When encrypt-credentials is enabled without any parameters, a caution mes-
sage displays advising you about the effect of the feature with prior software
versions, and actions that are recommended. All versions of the command
force a configuration save after encrypting or re-encrypting sensitive data in
the configuration.
Hide quick links:
Advertisement
Chapters
Table of Contents
