Solved: Re: Which encryption scheme to use during import

yms · ‎06-01-2018

Hi,

Cisco ISE has the option to export the local user accounts to a CSV file.

Passwords in that file are encrypted with a password which is entered upon export.
Now I want to create my own import files, but these need to contain the encrypted passwords (part of an automation process), and not the plain text versions(to add "false" value under password encrypt Colum but want store .csv in SharePoint with encryption password).

To do that I need to know which encryption scheme is used to create these encrypted passwords, so I can use this in the creation of the CSV files.

Thanks,

Yannick & Yogesh

kvenkata1 · ‎06-01-2018

Hi Yannick,

I am unable to understand your use case. If you are just storing the exported file, why do you need to know the encryption scheme? Password encryption schemes are typically not discussed in public for obvious reasons.

- Krish

View solution in original post

kvenkata1 · ‎06-01-2018

Hi Yannick,

I am unable to understand your use case. If you are just storing the exported file, why do you need to know the encryption scheme? Password encryption schemes are typically not discussed in public for obvious reasons.

- Krish

phrobert · ‎12-02-2024

This clearly does not answer the question OP has and should never has been set as 'solved'. You not understanding OP use case does not constitute a valid answer. Cisco preference to obfuscated cryptography over open standard reflects a lack of understanding of cryptographic best practice.

hslai · ‎06-01-2018

Adding to Krish's, ISE does not support such use case. If you need to encrypt the CSV files during transport, then use your own choice of encryption and then decrypt afterwards. Alternatively, you may use another ISE at the source site to export the users with a password and import it into the destination ISE after transfer.