cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
3487
Views
0
Helpful
5
Replies

ASA5510 and password encryption

projetlto
Level 1
Level 1

Hello,

In the configuration file of a firewall ASA5510, the password are encrypted.

Do you know the kind of encryption used?

Thanks for your help.

Best regards

1 Accepted Solution

Accepted Solutions

Panos Kampanakis
Cisco Employee
Cisco Employee

The configured passwords that correspond to locally configured user accounts are hashed using a proprietary hashing algorithm.  The ASA then stores these hash values in the configuration file instead of the clear text values. When you put in your password the hash is calculated again and verified againsta the stored one.

I hope it helps.

PK

View solution in original post

5 Replies 5

Panos Kampanakis
Cisco Employee
Cisco Employee

The configured passwords that correspond to locally configured user accounts are hashed using a proprietary hashing algorithm.  The ASA then stores these hash values in the configuration file instead of the clear text values. When you put in your password the hash is calculated again and verified againsta the stored one.

I hope it helps.

PK

Thanks a lot for your answer.

Do you know if this hashing algorithm is reversible or not and ?

And do you know if it has been certified by an organism of certification? If it is the case, which organism?

Thanks for your help

Best regards

It should not be reversible, it wouldn't be a hash then.

It is proprietary but based on known hash algorithms.

I don't think it is certified since it is proprietary.

PK

And do you have an idea about the known hash algorithms used?

Thanks a lot

Sébastien

Not "used" but "based on", it is MD5.

PK

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: