Create a Post
cancel
Showing results for 
Search instead for 
Did you mean: 
Bharat_Kumar
Participant
Jump to solution

Backups are stripped of sensitive information (such as usernames/passwords/preshared keys)

 

Are checkpoint backups stripped of sensitive information (such as usernames/passwords/preshared keys) when created ? 

0 Kudos
1 Solution

Accepted Solutions
Lesley
Leader Leader
Leader

It uses a hash to encrypt passwords, so nothing is stripped. To see what hash was used:

 show password-controls password-hash-type

To see PSK hash:

vpn dump_psk

To see Smartconsole password from mgmt:

psql_client cpm postgres -c "select fwset from dleobjectderef_data where name='<UserName>';" | grep internal_password

To see hash local GAIA users

show configuration user

I also assume you are fully updated and not running versions with known issues (like old CPinfo version). 

-------
If you like this post please give a thumbs up(kudo)! 🙂

View solution in original post

0 Kudos
(1)
2 Replies
Lesley
Leader Leader
Leader

It uses a hash to encrypt passwords, so nothing is stripped. To see what hash was used:

 show password-controls password-hash-type

To see PSK hash:

vpn dump_psk

To see Smartconsole password from mgmt:

psql_client cpm postgres -c "select fwset from dleobjectderef_data where name='<UserName>';" | grep internal_password

To see hash local GAIA users

show configuration user

I also assume you are fully updated and not running versions with known issues (like old CPinfo version). 

-------
If you like this post please give a thumbs up(kudo)! 🙂
0 Kudos
(1)
Bharat_Kumar
Participant

@Lesley Thanks for your response and clarification, yes it's fully updated, and a new Maestro build running at R81.20. 

0 Kudos

Leaderboard

Epsum factorial non deposit quid pro quo hic escorol.

Upcoming Events

    CheckMates Events