search

ytti / oxidized

Oxidized is a network device configuration backup tool. It's a RANCID replacement!
Apache License 2.0
2.75k stars 915 forks source link

FortiOS changes private key encryption every time config is downloaded #3176

Open anubisg1 opened 3 months ago

anubisg1 commented 3 months ago

This is very similar to https://github.com/ytti/oxidized/issues/931 and https://github.com/ytti/oxidized/issues/1199

the following lines are not excluded from configurations and they change every time the config is pulled

set password ENC
set passphrase ENC
set key ENC
set secondary-key ENC
set server-key ENC

i'm running 0.30.1 (probalby newer, i have latest docker image)

systeembeheerder commented 2 months ago

config:

...
models:
  fortios:
    vars:
      remove_secret: true
...

works for me