Filter
Top Products
11-12
User Guide for Cisco Security Manager 4.4
OL-28826-01
Chapter 11 Configuring Security Manager Administrative Settings
Deployment Page
Mask Passwords and Keys
When Viewing Configs and
Transcripts
Mask Passwords and Keys
When Deploying to File
The conditions, if any, under which Security Manager will mask the
following items so that they cannot be read: passwords for users, enable
mode, Telnet, and console; SNMP community strings; keys, including
those for TACACS+, Preshared Key, RADIUS server, ISAKMP,
failover, web VPN attributes, logging policy attributes, AAA, AUS,
OSPF, RIP, NTP, logging FTP server, point-to-point protocol, Storage
Key, single sign-on server, load balancing, HTTP/HTTPS proxy, and
the IPSEC shared key.
• Mask Passwords and Keys When Viewing Configs and
Transcripts—This option affects only the screen display of the
credentials, which guards against unauthorized personnel viewing
them. If you do not select this option, credentials in full transcripts
might still be masked depending on how the device handles them.
• Mask Passwords and Keys When Deploying to File—This option
affects the contents of configuration files that are deployed to file,
making them undeployable to actual devices. Select this option
only if you will never need to actually deploy these configurations
to real devices. Selecting this option has no effect on whether
credentials are masked when viewed.
Deploy only new or modified
Flexconfigs
Whether to deploy FlexConfigs only one time after creation or
modification of a FlexConfig, or to deploy all FlexConfigs with each
deployment. This option is selected by default.
Note If you have FlexConfigs that need to be deployed with each
deployment, then you will need to disable this option. After
changing this setting, you will need to manage one-time
FlexConfigs by deleting them after they have been deployed.
Table 11-8 Deployment Page (Continued)
Element Description