Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VCS-Expressway Alarm about Root password being hashed using MD5

I logged into my VCS-Expressway after performing the x7.2 update, and have come across a new warning I had not seen before. It states:

1 alarm: * warning   Insecure password in use - The root user's password is hashed using MD5, which is not secure enough

I've looked around in the documentation, and have not found anything that mentioned this. Is it a matter of just resetting the password, which is already very strong, or is there something else I need to do to remove this alarm? Any ideas?

Thanks

Michael

Everyone's tags (3)
1 ACCEPTED SOLUTION

Accepted Solutions

VCS-Expressway Alarm about Root password being hashed using MD5

Hi Michael,

Thats a wraning generated as you are still using the default root password on expressway!!

a snippet from the document!!

An “Insecure password in use” alarm will be raised against the root account. This is because the VCS now uses SHA512 to hash passwords. Passwords were previously hashed using MD5. The root account will still be accessible but you are recommended to use the root passwd command to reset the root account password. Administrator account passwords are rehashed automatically on upgrade.

check below document for more details

http://www.cisco.com/en/US/docs/telepresence/infrastructure/vcs/release_note/Cisco_VCS_Release_Note_X7-2.pdf

page 7 has after upgrade information.

change the password for root!!

I hope it clarifies your doubt

Thanks

Alok

4 REPLIES

VCS-Expressway Alarm about Root password being hashed using MD5

Hi Michael,

Thats a wraning generated as you are still using the default root password on expressway!!

a snippet from the document!!

An “Insecure password in use” alarm will be raised against the root account. This is because the VCS now uses SHA512 to hash passwords. Passwords were previously hashed using MD5. The root account will still be accessible but you are recommended to use the root passwd command to reset the root account password. Administrator account passwords are rehashed automatically on upgrade.

check below document for more details

http://www.cisco.com/en/US/docs/telepresence/infrastructure/vcs/release_note/Cisco_VCS_Release_Note_X7-2.pdf

page 7 has after upgrade information.

change the password for root!!

I hope it clarifies your doubt

Thanks

Alok

New Member

VCS-Expressway Alarm about Root password being hashed using MD5

I just confirmed that I am not using the default password for my Expressway. Your message did help though, I needed to re-run the passwd command on the VCS to re-hash the password in SHA512. Thanks.

New Member

VCS-Expressway Alarm about Root password being hashed using MD5

Michael

Thanks for posting that. That clarified why I too was seeing the same alarm on my development VCS where I also am not using the default pw.

Cisco Employee

VCS-Expressway Alarm about Root password being hashed using MD5

You can find same information at page 66 of TelePresence VCS X7.2 Introduction presentation, https://supportforums.cisco.com/docs/DOC-26316 as well.

2185
Views
10
Helpful
4
Replies
CreatePlease login to create content