Setup Guide

◦ 8 — input the password that is already encrypted using sha256–based encryption method.

– password: Enter the password string for the user.

– dynamic-salt: Generates an additional random input to password encryption process whenever the password is congured.

– privilege level: Assign a privilege levels to the user. The range is from 0 to 15.

– role role-name: Assign a role name for the user.

Dell EMC Networking OS encrypts type 5 secret and type 7 password based on dynamic-salt option such that the encrypted

password is dierent when an user is congured with the same password.

NOTE:

dynamic-salt option is shown only with secret and password options.

dynamic-salt conguration, the length of type 5 secret and type 7 password is 32 and 16 characters more compared to the

secret and password length without dynamic-salt conguration. An error message appears if the username command reaches the

maximum length, which is 256 characters.

The dynamic-salt support for the user conguration is added in REST API. For more information on REST support, see Dell EMC

Networking Open Automation guide.

Conguring the Enable Password

Access EXEC Privilege mode using the enable command. EXEC Privilege mode is unrestricted by default. Congure a password as a

basic security measure.

There are three types of enable passwords:

• enable password is stored in the running/startup conguration using a DES encryption method.

• enable secret is stored in the running/startup conguration using MD5 encryption method.

• enable sha256-password is stored in the running/startup conguration using sha256-based encryption method (PBKDF2).

Dell EMC Networking recommends using the enable sha256-password password.

To congure an enable password, use the following command.

• Create a password to access EXEC Privilege mode.

CONFIGURATION mode

enable [password | secret | sha256-password] [level level] [encryption-type] password

– level: is the privilege level, is 15 by default, and is not required.

– encryption-type: species how you input the password, is 0 by default, and is not required.

◦ 0 is to input the password in clear text.

◦ 5 is to input a password that is already encrypted using MD5 encryption method. Obtain the encrypted password from the

conguration le of another device.

◦ 7 is to input a password that is already encrypted using DES encryption method. Obtain the encrypted password from the

conguration le of another device.

◦ 8 is to input a password that is already encrypted using sha256-based encryption method. Obtain the encrypted password from

the conguration le of another device.

Conguration File Management

Files can be stored on and accessed from various storage media. Rename, delete, and copy les on the system from EXEC Privilege mode.

Getting Started