FWSM shows snmp string & tacacs key in clear text

samarjit.das · ‎06-13-2012

FWSM module loaded with IOS version 4.0(12) shows snmp string & tacacs key in clear text in show running config. Is there any solution to make it encrypted in show run.

Ramraj Sivagnanam Sivajanam · ‎07-28-2012

Hi Bro

This cannot be done, not even in the latest Cisco FWSM 4.1.8 image. "Maybe" there's a hidden Cisco command to achieve this, which I'm not aware off.

P/S: If you think this comment is useful, please do rate them nicely :-)

Warm regards,
Ramraj Sivagnanam Sivajanam

nkarthikeyan · ‎07-28-2012

Hi Samarjit,

Please do check to have service password-encryption enabled in your device.

As far as i know for snmp you are not giving any key.... you give only the string which will not get encrypted. If you have enabled the service password-encryption in your device. Then your tacacs key will get encrypted to level 7 encrption automatically. Else it will take 0 by default with plain text. But this also even it will not do md5 encryption for those password.

Please do rate if the given information helps.

By

Karthik

bzyczek77 · ‎12-03-2013

That does not work on Firewalls ASA or FWSM

I am also running currently with 4.1(8) version ... Can anyone tell me if the later versions resolve this issue?