This is a new deployment (ver 126.96.36.199) with only a handfull of devices in inventory. I noticed there was no enable password listed in the device credentials. I went and entered a password and the DNA center pushed an updated configuration via a EMM applet. Two problems with what it pushed, it configured a sha256 encryption for the local admin user and for the enable password. We utilize scrypt or type 9 encryption. Is there a place where I can specify which algorithm to use when dealing with device passwords?
The other issue was even though the action in the applet contained cli command "no event manager applet_NEW_CREDENTIAL" the applet was not deleted. I entered that exact command and the applet was deleted. Has anyone seen this issue before?
Two problems with what it pushed, it configured a sha256 encryption for the local admin user and for the enable password. We utilize scrypt or type 9 encryption. Is there a place where I can specify which algorithm to use when dealing with device passwords?
-Was this ever resolved? AFAIK from within DNAC no. I would recommend submitting a feature request to your Cisco reps and/or using the make-a-wish from within DNAC to possibly get some visibility on this. The only thing I can think of to try is to attempt using the DNAC config template editor or have the necessary scrypt config as a part of your base config when deploying a node prior to adding to inventory via discovery etc.
If the default was sha256 I would suggest figuring out how to test to ensure there are no hiccups with DNAC. Maybe try manually modifying via CLI on an EN, and then re-sync the device in inventory to see if DNAC complains. Good luck & HTH!
The following documents are reviewed on the Ask The Experts Session titled: Use Case Overview and Planning: Cisco DNA Center Project Planning.
Here you can find editable versions of the
Solution Requirements Document UCOP_CiscoDNACenterProjectPlann...
If so, we’d like to speak with you to understand you and your team’s process on how you monitor and troubleshoot network traffic.
We ask that you complete our brief survey: https://ciscoux.az1.qualtrics.com/jfe/form/SV_d4LYJ5oWqWj9CCy Based on your ...
Listen: https://smarturl.it/CCRS8E38 Follow us: twitter.com/CiscoChampionAdding learning capabilities to the internet will increase the overall network SLO and application experience. Real data driven experiments have shown that such an approach...
Listen: https://smarturl.it/CCRS8E37Follow us: twitter.com/ciscochampionSometimes, situations require temporary fixes. Sometimes, the network becomes an afterthought in overall office design and planning. In either situation, it may require netw...
In this special edition of the Insider Series, we hear from Cisco partners who have taken steps to be more eco-friendly and sustainable. We hear what inspires ASHRAE, Southwire, Igor, and NTT to create a workplace that is centered around people and how th...