Encrypting or decrypting a password manually

If you set a password using a configuration file, you must encrypt or decrypt the password manually. By default the ncp_crypt command encrypts the password provided. However, if you specify the decrypt option, then the password is decrypted.

About this task

Complete these steps to encrypt or decrypt a password from the configuration file.

Note: All password encryption in Network Manager is performed using FIPS 140–2 compliant algorithms.

Procedure

  1. Stop Network Manager.
  2. Encrypt or decrypt the required password from the command line using the ncp_crypt utility in the ITNMHOME/bin directory. 
    ncp_crypt -password password [ -decrypt ] [ -help ] [ -version ]
  3. Configure an insert in the relevant configuration file.
    1. Use the output from the ncp_crypt encryption utility.
    2. Set the value of the m_EncryptedPwd field to 1.
  4. Restart Network Manager.

Example

To encrypt the password, type the following command.
ncp_crypt -password mypassword
To decrypt a password you use the same utility that is used to encrypt the password, but with an additional command line argument. 
ncp_crypt -decrypt -password @44:xXd7WUIC8teZDhLs8RQ1VjArw8HmUtNCwWs/VrVIxqI=@