Solved: Re: Default hash for 'admin' password ?

mulatif · ‎01-10-2018

Hi,

I wanted to confirm that when creating a local \ admin account on ISE (CLI), the default hash is SHA256 ?

Thanks,

Naman

hslai · ‎01-10-2018

Yes, I can confirm that ISE 1.3+ is doing SHA256 for CLI users of both admin and user roles.

View solution in original post

hslai · ‎01-10-2018

Yes, I can confirm that ISE 1.3+ is doing SHA256 for CLI users of both admin and user roles.

phipham007 · ‎08-03-2021

We have SNS-3615-K9 fresh installed with ADE 3.0 and Cisco ISE 2.7.

Cisco Application Deployment Engine OS Release: 3.0
ADE-OS Build Version: 3.0.7.093
ADE-OS System Architecture: x86_64

Version information of installed applications
---------------------------------------------

Cisco Identity Services Engine
---------------------------------------------
Version : 2.7.0.356
Build Date : Thu Nov 14 03:21:59 2019
Install Date : Thu Jul 8 12:50:36 2021

Cisco Identity Services Engine Patch
---------------------------------------------
Version : 4
Install Date : Thu Jul 08 14:32:02 2021

However, the password hashing looks like MD5 to me.
username testadmin password hash $5$DFbBnbTm$O3sB256hlPa3MsgSsdnMLvZ89E3ubzvabwENmHUb8SA role admin

When I tried to change the hashing options to SHA256, it says max size is 55. But SHA256 is longer than 55 character ! So is it possible to use SHA256 hashing ?

blabla/admin(config)# username testadmin2 password hash ?
<WORD> SHA256 or MD5 password hash (Max Size - 55)