Requirement:
How to enforce hashing on the mgmt-user password on Instant AP?
IAP running pre 4.3 version had an option to check the mgmt-user password by running "show running-configuration no-encrypt" command.
Hence for advance security from 4.3.0.0 version on IAP hashing of mgmt-user password is supported. Enforce hashing of management users passwords is supported for all the user-type :local, read-only and guest-registration
A hashed password is more secured than an encrypted password because encrypted password can be decrypted back but a hashed password cannot be reversed back to original text.
Hash-mgmt-password is enabled by default on 4.3 image
IAP#configure terminal IAP (config)#hash-mgmt-password IAP (config)#hash-mgmt-user admin password cleartext admin123 IAP (config)#hash-mgmt-user viewonly password cleartext viewonly usertype read-only IAP (config)#hash-mgmt-user guest password cleartext guest usertype guest-mgmt IAP#commit apply
IAP#show mgmt-user
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.