Hi every body,
Please consider following exampe:
User name test
pass word test123
class supre-user
Below ,we confgure above user name test plain text password test 123
DEVICE_B# set system login user test class super-user authentication plain-text-password
New password:
Retype new password:
DEVICE_B# show system login | display set
set system login user test uid 2001
set system login user test class super-user
set system login user test authentication encrypted-password "$1$vlMfeeRv$yEgd0/q9HPqyr7.2FFi9C0"
Note the encryption is $1$vlMfeeRv$yEgd0/q9HPqyr7.2FFi9C0
We delete the username test123, class super user , password, and re entered it :
DEVICE_B# delete system login
DEVICE_B# set system login user test class super-user authentication plain-text-password
New password:
Retype new password:
DEVICE_B# show system login | display set
set system login user test uid 2001
set system login user test class super-user
set system login user test authentication encrypted-password "$1$SbP8N8Mc$.PWPRCflxvzIyHpg4RLn0/"
Note encrption is different $1$SbP8N8Mc$.PWPRCflxvzIyHpg4RLn0/ for the same password test 123.
So far, we establish, JUNOS has different encrpytion strings for same plain text password test 123.
2) Let say we want to configure ssh access on our juniper device, we will use username test, and encrypted string" $1$SbP8N8Mc$.PWPRCflxvzIyHpg4RLn0/" from above, as shown below:
set system login user test uid 2001
set system login user test class super-user
set system login user test authentication encrypted-password "$1$SbP8N8Mc$.PWPRCflxvzIyHpg4RLn0/"
We are able to login using user test and password test 123
JUNOS was able to determine the password test123 from encrypted string "$1$SbP8N8Mc$.PWPRCflxvzIyHpg4RLn0/"
We delete the user name and this time enter user name test , with encrypted string from above $1$vlMfeeRv$yEgd0/q9HPqyr7.2FFi9C0.
Junos was able to determine the password test 123 from encrypted string $1$vlMfeeRv$yEgd0/q9HPqyr7.2FFi9C0
Based on the above, is it not correct to assume JunOS for each given passoword , has defined set of encryption strings?
Thanks and have a good weekend!!