Solved: lms3.2 passwords & preshared key

desrochj1 · ‎12-10-2010

hello,

i have added some ASA to my ciscoworks server.

when i look at the config i see that preshared keys are removed and replaced by a star *

i see something like

tunnel-group cisco ipsec-attributes
pre-shared-key *

then i searched some directories for the the plain text config files and it does not contain the preshared keys....

if i try to recover from a disaster with those "backup files" it's gonna be useless

is there any tricks to include preshared keys and passwords to my config files

thanks

Joe Clarke · ‎12-12-2010

The devices themselves are putting these stars in the config (starting in 8.2). The way RME archives the config is to do a "show runn" and extract the config from the output. RME does not yet support the ability to do a copy runn tftp, which would allow the clear text passwords to be archived. However, this undos the security one would get by performing the screen scraping over SSH. Therefore, LMS only uses the "show runn" command to get the config.

View solution in original post

Joe Clarke · ‎12-12-2010

The devices themselves are putting these stars in the config (starting in 8.2). The way RME archives the config is to do a "show runn" and extract the config from the output. RME does not yet support the ability to do a copy runn tftp, which would allow the clear text passwords to be archived. However, this undos the security one would get by performing the screen scraping over SSH. Therefore, LMS only uses the "show runn" command to get the config.