I have this IOS 15.2(7)E3 running on 2960X.
I have set:
(config)#key config-key password-encrypt ***
(config)#password encryption aes
However, my tacacs and radius keys do not get encrypted using 'key 6', like in this example. They are still shown in clear-text.
Could you please advise what else I am missing.
I believe you'll need command 'service password-encryption' (although I don't have switch next to me to be sure). Also, if I remember correctly, it might not be that this command will encrypt your already configured password, and that you'll have to retype them.
What I do remember is that you need to remember/save password used in 'key config-key password-encrypt XXX', as you won't be able to restore configuration later without it (in terms of password recovery).
I believe you need to use the command " tacacs server key 6 key-name."