Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 
ON THIS PAGE
 

master-password

Syntax

Hierarchy Level

Description

Master password for $8$-based password-encryption. The master password is used as input to the password-based key derivation function (PBKDF2) to generate an encryption key. The key is used as input to the Advanced Encryption Standard in Galois/Counter Mode (AES256-GCM). The plain text that the user enters is processed by the encryption algorithm (with key) to produce the encrypted text (cipher text).

Options

plain-text-password

Set the master password with plain text. The password quality is evaluated for strength, and the device gives feedback if weak passwords are used.
iteration-count

The number of iterations to use for the PBKDF2 hash function. The iteration count slows the hashing count, thus slowing attacker guesses.

  • Default: 100

  • Range: 10-10000
pseudorandom-function

Choose the algorithm to use for unpredictable number generation.

  • Values:

    • hmac-sha1—Hash-based MAC using secure hash algorithm-1 (SHA-1)

    • hmac-sha2-256—256-bits of hash-based MAC using SHA-2

    • hmac-sha2-512—512-bits of hash-based MAC using SHA-2

Required Privilege Level

admin—To view this statement in the configuration.admin-control—To add this statement to the configuration.

Release Information

Statement introduced in Junos OS Release 16.2.

Statement introduced in Junos OS Evolved Release 22.4R1.

Related Documentation