Sanitize Network Device Configurations for Auditors

What should be sanitized for Auditors?

    Obviously all hashed passwords should be sanitized.  What else should be?

    SNMP community strings?
    Cryptochecksum?
    IP if policy permits?
    Anything else?

Suggestions?  Comments?

awakenings
awakeningsAsked:
Who is Participating?
 
calvinetterCommented:
 I'd sanitize as much as possible; including the following:
SNMP community strings
Cryptochecksum
All public IPs if possible (or mask them out like so: x.x.x.82); private IPs don't matter (ie: 10.x.x.x, 172.16.x.x-172.31.x.x, 192.168.x.x)
Running Activation Key
Serial Number
RADIUS/TACACS server keys
ISDN spid
All usernames and passwords
Any circuit IDs that appear in interface descriptions

Just my $0.02.
cheers
0
 
awakeningsAuthor Commented:
What about Running Activation Key?
Serial Number?
0
 
awakeningsAuthor Commented:
tacacs-server key?
IDSN spid?
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.