I have a security consultat asking about the hashing mechanism used on the user accounts of the WLC. He would like to see a standard of at least SHA-512.
I've had a look around and can't see any specifics in the various config guides, FAQs etc. about what is used on the WLC.
Looking at the output from a WLC show run-config, I see the following example output:
config mgmtuser add encrypt admin 1 de84d8aeeafdda8f615ac79c3845159 652008d84fcd79e01202ae8a1714a37f3d86eff0 16 adb8bc19105b76280d30ccf075c5a7b00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000 read-write
I've had a look to see if I can work out whether this complies to SHA-256, SHA-512 etc. by looking at various examples around the web, but the number of generated hex characters don't seem to match up with any standard I can find.
Anyone know whether the hashing used is SHA-512 or better?
Thanks
Nigel.