Cisco Community
English
Register
The War in Ukraine - Supporting customers, partners and communities. LEARN MORE
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

1844
Views
0
Helpful
1
Replies
Jennercramer
Beginner
Beginner
‎05-26-2020 10:11 AM
‎05-26-2020 10:11 AM

Radius Server key not encrypting

Greetings! 

 

I am very new to NX-OS, and it has been an uphill battle getting everything working. My current issue is that I cannot get my aaa shared keys to encrypt. They are set on level 7 but when I perform a show run, it shows in clear text on most of the switches. On one switch (identical configuration for now) it has encrypted, but cannot get the others to follow in its footsteps. Does anyone have any advice on what the issue might be? 

 

 

Labels:
0 Helpful
1 REPLY 1
balaji.bandi
VIP Guru VIP Guru
VIP Guru
‎05-26-2020 11:39 AM
‎05-26-2020 11:39 AM

never seen this before 

here is the example :

 

Configuring Global Preshared Keys

You can configure preshared keys at the global level for all servers used by the Nexus 5000 Series switch. A preshared key is a shared secret text string between the Nexus 5000 Series switch and the RADIUS server hosts.

To configure global preshared keys, obtain the preshared key values for the remote RADIUS servers and perform this task:

:

 
Command
Purpose

Step 1

switch# configure terminal

 

 

Enters configuration mode.

Step 2

switch(config)# radius-server key [ 0 | 7 ] key-value

 

 

Specifies a preshared key for all RADIUS servers. You can specify a clear text (0) or encrypted (7) preshared key. The default format is clear text. The maximum length is 63 characters.

By default, no preshared key is configured.

Step 3

switch(config)# exit

 

 

Exits configuration mode.

Step 4

switch# show radius-server

 

(Optional) Displays the RADIUS server configuration.

Note The preshared keys are saved in encrypted form in the running configuration. Use the show running-config command to display the encrypted preshared keys.

Step 5

switch# copy running-config startup-config

 

(Optional) Copies the running configuration to the startup configuration.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Latest Contents
Cisco Champion Radio:S9|E20 Protection for Your Enterprise-C...
Created by Amilee San Juan on 05-25-2022 02:54 PM
0
0
0
0
Listen: https://smarturl.it/CCRS9E20Follow us: https://twitter.com/CiscoChampion  With over one trillion email scams per year, more than 22 billion records were exposed by data breaches in 2021. Phishing attacks are clearly on the rise, and they’re e... view more
DOT1X IOS commands overview
Created by Meddane on 05-21-2022 03:14 PM
0
0
0
0
Radius server configuration for 802.1X   Server radius test1 Address ipv4 10.1.1.1 Key 1234 ! Server radius test2 Address ipv4 10.1.1.2 Key 1234 ! aaa group server radius TEST-gr  server name test1  server name test2 !      &... view more
Umbrella’s cloud-delivered firewall (CDFW)
Created by Meddane on 05-21-2022 03:04 PM
0
0
0
0
Umbrella’s cloud-delivered firewall (CDFW) is a cool features that provides Firewall Services in the Cisco Umbrella Cloud without the need to deploy on-premises firewall devices and visibility and control for internet traffic across all branch offices. To... view more
GRE over IPSec Crypto map versus Tunnel Protection (IPsec Pr...
Created by Meddane on 05-21-2022 03:01 PM
0
0
0
0
GRE over IPSec Crypto map   int tunnel 1ip add 172.16.1.1 255.255.255.0tunnel source G0/0tunnel destination 2.2.2.2!access-list 100 permit gre host 1.1.1.1 host 2.2.2.2!crypto ipsec transform-set TS esp-aes esp-sha-hmac!crypto map TESTset peer 2.2.2.... view more
ISE URL Redirection on IOS-XE
Created by Mohsin_Mohamed on 05-20-2022 01:04 PM
0
0
0
0
SymptomsDownloadable ACL (dACL) does not take effect on the IOS-XE Network Access DevicesDiagnosisCreating redirection ACL on the IOS-XE device failed to redirect the specified traffic for captive portal redirectionSolutionEnable device tracking, Below is... view more
Ask a Question
Create
+ Discussion
+ Blog
+ Document
+ Video
+ Project Story
Find more resources
Discussions
Blogs
Documents
Events
Videos
Project Gallery
New Community Member Guide
Related support document topics
Recognize Your Peers
Spotlight Award Nomination
Content for Community-Ad