I am trying to figure out how does the service password-encryption command work. Supposedly, if this command is set, it will enable the password encryption. On the other hand, the password encryption is also available in the "enable password" command by using the encryption type setting (usually, it's 7). How do these 2 differ?
Also, does the service password-encryption command available in the CatOS?
Service password encryption only affects plain text passwords such as the line passwords or the enable password. This feature uses a simple substitution method to create a "secure" non-text password displayed in the configuration. The feature was added in version 10.0 of the IOS
The enable secret password command, which was added in version 11.0 of the IOS is encrypted with the MD5 hashing algorithm and is ALWAYS encrypted. Note the command was added after service-password encryption command and it is NOT affected by the service-password encryption command.
There is no password encryption command available in the CatOS because the passwords on the CatOS box are always encrypted and can NOT be displayed in plain text.