Welcome, Guest. Please login or register.

Author Topic: Backup Cisco ASA & pre-shared keys in plain text  (Read 2428 times)

uestueno

  • Newbie
  • *
  • Posts: 1
    • View Profile
Backup Cisco ASA & pre-shared keys in plain text
« on: June 28, 2013, 12:09:15 AM »
Hi all,

I'd like to share some experience backing up Cisco ASA Firewalls.
NeDi uses normally the ’show run’ command to backup the running configuration but when you run this command Pre-shared keys are marked with an asterisk (*). To view the passwords unencrypted, the ‘more system:running-config’ command is a better choice. This will display the full configuration with unencrypted passwords.

So, if you want to backup Cisco ASA Firewalls with NeDi and without asterisk (*) then you have to change following in nedi/inc/libcli-iopty.pm

(at Line 233)

change:

Code: [Select]
$cmd{'IOS-fw'}{'conf'} = 'show run';
to:

Code: [Select]
$cmd{'IOS-fw'}{'conf'} = 'more system:running-config';

Maybe Remo could implement this in his source code?

Regards
« Last Edit: June 28, 2013, 12:13:32 AM by uestueno »

rickli

  • Administrator
  • Hero Member
  • *****
  • Posts: 2695
    • View Profile
    • NeDi
Re: Backup Cisco ASA & pre-shared keys in plain text
« Reply #1 on: June 28, 2013, 12:25:17 AM »
tx, done :) I left sh run in there (commented), in case some versions have problems...
Please consider Other-Invoices on your NeDi installation for an annual contribution, tx!
-Remo