92
Enabling configuration encryption
Configuration encryption enables the device to encrypt a startup configuration file automatically
when it saves the running configuration. All HPE devices running Comware V7 software use the
same method to encrypt configuration files.
HPE devices running Comware V7 software can decrypt the encrypted configuration files.
As a
best practice, configure acc
ess permissions for an encrypted configuration file to prevent this file
from being decoded by any unauthorized users.
To enable configuration encryption:
1. Enter system view.
system-view
N/A
2.
encryption.
configuration encrypt
{
private-key
|
public-key
}
By default, configuration
encryption is disabled.
Configuration is saved
unencrypted.
Displaying configuration differences between
configuration files
You can use the commands in this section to display the configuration differences between two
configuration files.
If you specify the next-startup configuration file for comparison, the system searches the next-startup
configuration file in the following order:
1. The main next-startup configuration file.
2. The backup next-startup configuration file if the main next-startup configuration file is
unavailable or corrupt.
If both the main and backup next-startup configuration files are unavailable or corrupt, the system
displays a message indicating that the next-startup configuration file does not exist.
To display the configuration differences between two configuration files in any view:
Display the configuration differences
between two specified configuration files.
display diff configfile
file-name-s
configfile
file-name-d
Display the configuration differences
between the specified configuration file and
the current startup configuration file.
• Method 1:
display diff configfile file-name-s
current-configuration
• Method 2:
display diff current-configuration configfile
file-name-d
To Next Page
Loading...
