ArubaOS and Controllers

Reply
New Contributor
Posts: 2
Registered: ‎12-17-2010

Password format

Hi,
Does anyone know what formats the passwords are stored in the configuration file for a 2400 controller?
Also, the same question for the wpa-passphrase?
Cheers!
Aruba Employee
Posts: 664
Registered: ‎04-15-2009

Re: Password format

Not sure about the format, but if you want to see what they are, you can go to the CLI and do the command "encypt disable". Then, do "show run" or "show local-userdb" to see the clear text passwords. This will only work for non-mgmt users and other non-hash passwords. The enable secret and mgmt-users will not show clear text.
New Contributor
Posts: 2
Registered: ‎12-17-2010

Re: Password format

Thanks Olino. I want to know what hashing mechanism is in use as I am trying to understand the risk from crypto attacks on the hashes in the event a configuration file is compromised. I'm coming from the same angle as that applied to the Cisco hashes. Cisco type7 password are trivial to reverse, and later version use MD5 which are susceptible to collisions. Just wondering if the same issues apply to Aruba password hashes.
MVP
Posts: 1,357
Registered: ‎11-07-2008

Re: Password format

I'm not sure about the commercial codes, but you can get a general idea of the password hashing and security mechanisms from our FIPS security policies found at NIST's web page

http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/1401vend.htm

An example for the M3 and 3x00 for AOS 3.3.2-FIPS can be found here at the link below, starting on page 18 dealing with CSP policies
http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1075.pdf

Again, while not 100% of this would apply to non-FIPS code, alot of it does as our core architecture is framed the same way.
Jerrod Howard
Sr. Techical Marketing Engineer
Search Airheads
Showing results for 
Search instead for 
Did you mean: