In order to encrypt passwords that are saved in the Cisco devices configuration file, you may use the “service password-encryption” global configuration command.
This command should be used as a simple cipher to prevent unauthorized users from viewing the passwords in router / switch configuration file. It is not against someone who obtains a copy of the router / switch configuration file as some software instantly can decode any passwords encrypted with the MD5 encryption scheme.
When password encryption is enabled, the encrypted form of the passwords is displayed when a
more system:running-configcommand is entered.
The only password not affected by the service password-encryption command is the enable secret password. To restore the default, use the no form of this command.
No comments:
Post a Comment