Cisco Cisco TelePresence Video Communication Server Expressway 관리 매뉴얼
Password encryption
All passwords configured on the VCS are stored securely in either an encrypted or hashed form. This applies
to the following items, which all have usernames and passwords associated with them:
to the following items, which all have usernames and passwords associated with them:
n
the default admin administrator account
n
any additional administrator accounts
n
local authentication database credentials (a list of valid usernames and passwords that are used when
other devices are required to authenticate with the VCS)
other devices are required to authenticate with the VCS)
n
outbound connection credentials (used by the VCS when required to authenticate with another system)
n
LDAP server (used by the VCS when binding to an LDAP server)
Web interface
When entering or viewing passwords using the web interface, you will see placeholder characters (e.g. dots
or stars, depending on your browser) instead of the characters you are typing.
or stars, depending on your browser) instead of the characters you are typing.
Command line interface (CLI)
When entering passwords using the command line interface (CLI), you type the password in plain text.
However, after the command has been executed, the password is displayed in its encrypted form with a
{cipher}
However, after the command has been executed, the password is displayed in its encrypted form with a
{cipher}
prefix, for example:
xConfiguration Authentication Password: "{cipher}xcy6k+4NgB025vYEgoEXXw=="
Note that FindMe is a standalone application that can be hosted by the VCS or by another remote server.
This means that FindMe account information is not configured or accessible using the CLI of the VCS.
However, FindMe account passwords are still stored securely.
This means that FindMe account information is not configured or accessible using the CLI of the VCS.
However, FindMe account passwords are still stored securely.
Maximum length of passwords
For each type of password, the maximum number of plain text characters that can be entered is shown in the
table below.
table below.
Password type
Maximum length
Admin account
1024
Other local administrator accounts
1024
Local database authentication credentials
128
Outbound connection credentials
128
LDAP server
60
FindMe accounts
30
Note that:
n
local administrator account passwords are hashed using SHA512; other passwords are stored in an
encrypted format
encrypted format
n
when a password is encrypted and stored, it uses more characters than the original plain text version of the
password
password
Cisco VCS Administrator Guide (X8.1)
Page 385 of 504
Reference material
Password encryption