Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
640
Views
0
Helpful
1
Replies

Encrypt shared key with AAA server

ThomasD86
Level 1
Level 1

‎12-20-2021 05:30 AM

Hi,

as the title of my posts says, our security group raised concern over this topic.
The problem is that during a "show run" of the device, the tacacs+ shared key is encrypted with mode 7 which means that it is possible to get the authentication key rather easily from any website. So they asked us if it is possible to change the encryption of that key to something more secure.

The router is an ASR9k using IOS-XR 7.1.3 64-bit, but the only options I get from the CLI are 0 and 7. Is there a way to use any other mode?

Thank you

0 Helpful
1 Reply 1
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card