Manualshelf

Installation guide

ManualsBrandsAcopia Networks ManualsComputer equipmentARX 6000
51525354555657585960
Connecting the Switch to the Network
Booting the Switch
6-10 ARX®1000 Hardware Installation Guide
Preparing to Install a Redundant Peer
The initial-boot script requires some additional information if you are installing the
second switch in a redundant pair. Both members of a redundant pair share a common
master key. A master key is an encryption key for all critical-security parameters
(CSPs), such as administrative passwords. Redundant switches share the same users,
groups, and passwords, so they must use the same master key.
At the peer that is currently installed, use the
show master-key command to create an
encrypted copy of the master key:
show master-key
The CLI prompts you for two passwords:
System Password is a password entered at initial-boot time (see “Sample:
Booting a Non-Replacement Switch” on page 6-3). It is 12-32 characters long.
This validates that you have permission to access the master key.
Wrapping Password is set with this command. The security software uses this to
encrypt (and later decrypt) the master-key string.
Enter 12-32 characters. At least one character in this password must be a number
(0-9) or a symbol (!, @, #, $, and so on).
Save this password: you will need it to decrypt the master key later, on the new
switch.
This command outputs a base64-encoded string that is the encrypted master key. Save
this string and the wrapping password that you set in the command.
For example, this shows the master key on a switch named “prtlndA1kB:”
prtlndA1kB# show master-key
Master Key System Password: %uper$ecretpw
Wrapping Password: an0ther$ecretpw
Validate Wrapping Password: an0ther$ecretpw
Encrypted master key: