cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3648
Views
2
Helpful
2
Replies

Default hash for 'admin' password ?

mulatif
Cisco Employee
Cisco Employee

Hi,

I wanted to confirm that when creating a local \ admin account on ISE (CLI), the default hash is SHA256 ?

Thanks,

Naman

1 Accepted Solution

Accepted Solutions

hslai
Cisco Employee
Cisco Employee

Yes, I can confirm that ISE 1.3+ is doing SHA256 for CLI users of both admin and user roles.

View solution in original post

2 Replies 2

hslai
Cisco Employee
Cisco Employee

Yes, I can confirm that ISE 1.3+ is doing SHA256 for CLI users of both admin and user roles.

We have SNS-3615-K9 fresh installed with ADE 3.0 and Cisco ISE 2.7.

 

Cisco Application Deployment Engine OS Release: 3.0
ADE-OS Build Version: 3.0.7.093
ADE-OS System Architecture: x86_64

Copyright (c) 2005-2019 by Cisco Systems, Inc.
All rights reserved.


Version information of installed applications
---------------------------------------------

Cisco Identity Services Engine
---------------------------------------------
Version : 2.7.0.356
Build Date : Thu Nov 14 03:21:59 2019
Install Date : Thu Jul 8 12:50:36 2021

Cisco Identity Services Engine Patch
---------------------------------------------
Version : 4
Install Date : Thu Jul 08 14:32:02 2021

 

However, the password hashing looks like MD5 to me.
username testadmin password hash $5$DFbBnbTm$O3sB256hlPa3MsgSsdnMLvZ89E3ubzvabwENmHUb8SA role admin

 

When I tried to change the hashing options to SHA256, it says max size is 55. But SHA256 is longer than 55 character ! So is it possible to use SHA256 hashing ?

blabla/admin(config)# username testadmin2 password hash ?
<WORD> SHA256 or MD5 password hash (Max Size - 55)