GS1920v2-8HP - credentials are in plaintext

ChrisGer

Hi ZYXEL Support Team,
i rebuild a configuration on a GS1920v2 today and a bit confused, that all data (sensitive e.g. admin credentials) are stored in plain text in the config file of a GS1920v2-8HP Switch

such information is normaly stored encrypted in a config backup (e.g. like with the USG accounts)
All other parameter can be stored in cleartext but not the admin credentials

Device Information
Firmware: V4.50(ABKZ.2) | 08/30/2018
HW-Revision: 2.0
Modus: Standalone mode

Thx forward for your response
Christian

Zyxel_JonasTan

Hi @ChristianG,

Good day.
Yes, there is a known issue for restore backup configuration and already fixed in the latest patch V4.50(ABxx.3)C0, please upload the latest firmware. (Firmware Link)

But based on your encountering issue, it is more related to a typo of the command because we don't have the command line "telnet commant".

I'll PM you to retrieve the configuration file so I could verify.

Thanks for supporting Zyxel and Merry Christmas!

Alfonso

ChristianG said:

All other parameter can be stored in cleartext but not the admin credentials

I totally agree @Chri@ChristianG

But other parameters should not be stored in cleartext.
For example radius authentication password.

So Zyxel should analyze what kind of information is stored in cleartext and how to encrypt it.

Regards

ChrisGer

@Alfonso ,
totaly agree to your post. if you have a USG with an old firmware, the SSID and depenting  credentials for the SSID where also stored in plaintext in the config file
The USG accounts where decrypted.

So in my mind, they should use the decryption module as in the USG to have not a lot off different modules for decryption

Regards
Christian

Zyxel_JonasTan

Hi @ChristianG,

We had an internal meeting regarding this case.
The encrypted password for GS1920v2 series admin credentials had already added in Zyxel future roadmap and already listed in the Idea section.

Thanks for your advice.

ChrisGer

@Zyxel_Jason
is there also a known issue to restore a saved configuration file at a GS1920v2 ?
i got the error in line 5 "telnet commant" that stoped the restore and i had to reconfigure the switch from factory default to the documentated configuration as described in the System Operation Handbook (SOHB).

The switch had only a hand of vLANs in the uplink, changed admin / snmp credentials and no special settings.
 
Thanks and regards
Christian

Zyxel_JonasTan

Hi @ChristianG,

Good day.
Yes, there is a known issue for restore backup configuration and already fixed in the latest patch V4.50(ABxx.3)C0, please upload the latest firmware. (Firmware Link)

But based on your encountering issue, it is more related to a typo of the command because we don't have the command line "telnet commant".

I'll PM you to retrieve the configuration file so I could verify.

Thanks for supporting Zyxel and Merry Christmas!