Saving security credentials in a config file

You can store and view the following security settings in the running-config file associated with the current software image by entering the include-credentials command (formerly this information was stored only in internal flash memory):

  • Local manager and operator passwords and (optional) usernames that control access to a management session on the switch through the CLI, menu interface, or WebAgent.

  • SNMP security credentials used by network management stations to access a switch, including authentication and privacy passwords.

  • Port-access passwords and usernames used as 802.1X authentication credentials for access to the switch.

  • TACACS+ encryption keys used to encrypt packets and secure authentication sessions with TACACS+ servers keys.

  • RADIUS shared secret (encryption) keys used to encrypt packets and secure authentication sessions with RADIUS servers.

  • Secure Shell (SSH) public keys used to authenticate SSH clients that try to connect to the switch.