Darren Loher
Darren Loher
Please feel free to reopen if @morrowc 's response needs clarification.
I would like to revisit this decision. For dataplane encryption configuration, OC defines the algorithm used for encryption with the protocol that is performing the encryption. For example: MACSec: `/macsec/mka/policies/policy/config/macsec-cipher-suite`...
Here are two implementations which roughly follow the existing OC schema of keychain with key algorithm and macsec with it's separate encryption algorithm. Cisco [IOS XR](https://www.cisco.com/c/en/us/td/docs/iosxr/cisco8000/security/b-system-security-cr-cisco8000/macsec-encryption-commands.html#wp1215361433) 1. Creating a MACsec...
Here's how I think OC should map to EOS: EOS Key configuration ``` ! management security password encryption reversible aes-256-gcm ! tacacs-server key 8a $kUVyoj7FVQ//yw9D2lbqjA==$kxxohBiofI46IX3pw18KYQ==$DOOM0l9uU4TrQt2kyA7XCKtjUA== ``` OC equivalent JSON ```json...