sir,
if I use master password, it will hash it as $9. when I pull a config file with hashed key $9, the srx errors out. if I replace the hashed key with $8, the newly loaded config file has no issue. is there a way to force the SRX to generate $8 hashed key so I can transit the config file from one SRX 340 to another with no key issue?
thanks in advance
------------------------------
ALI ARKAWAZI
------------------------------
Original Message:
Sent: 01-20-2018 10:32
From: jonashauge
Subject: Junos Password and key storing hashes
This has already been handled from Junos 15.1X49-D50 and 16.2R1 for MX/QFX.
You can define a master password which then encrypt the $9$ strings. You can then only use the $9$ values if you know the master password.
More information here: https://www.juniper.net/documentation/en_US/junos/topics/concept/harden-shared-secrets.html
I hope this answers your question 🙂