ClausHolbechArista
commented
6 months ago EOS implements different algorithms in various places - even though they may say type-7. Let's discuss offline how to implement this.
Open dgonzalez85 opened 8 months ago
ClausHolbechArista
commented
6 months ago EOS implements different algorithms in various places - even though they may say type-7. Let's discuss offline how to implement this.
github-actions[bot]
commented
3 months ago This issue is stale because it has been open 90 days with no activity. The issue will be reviewed by a maintainer and may be closed
Enhancement summary
As discussed with @gmuloc, we would like a way to encrypt tacacs passwords via AVD. Similarly as we can do for protocol passwords, or usernames using ansible filters, we need to support clear text passwords in vaults or for AAP use cases.
There is a library that can do that: https://passlib.readthedocs.io/en/stable/lib/passlib.hash.cisco_type7.html
And someone developed an ansible plugin: https://gist.github.com/glaszig/1ba07d81d010b653f92d
Not sure what would be the best way to do this in AVD.
Which component of AVD is impacted
plugins
Use case example
AVD to encrypt clear text tacacs password.
Describe the solution you would like
AVD plugin or filter that can encrypt the password.
Describe alternatives you have considered
Using ansible passlib filter plugin: https://gist.github.com/glaszig/1ba07d81d010b653f92d
Additional context
No response
Contributing Guide