Preface
Starting with version 1.9.0, Unimus supports striping sensitive data from backups of devices.
When this feature is enabled, passwords, pre-shared-keys, and other sensitive data will not be stored in backups of devices.
This can be enabled in "Other settings > Sensitive data striping".
You can enable striping sensitive data globally ("Default sensitive data striping policy"), or per-Tag.
Per-Tag policy always over-rides the default policy for devices that the Tag applies to.
If a single device belongs to Tags that specify both the "Never strip" and the "Always strip" policy, the more security option ("Always strip") will be applied.
Always check for desired behavior
When using this feature, always verify if all sensitive data is properly being striped.
Also verify if data which should be present is not getting striped when it should not be.
Supported devices
Currently, sensitive data striping is supported on these devices:
Cisco ASA Cisco IOS Cisco IOS XR Cisco Nexus Cisco NXOS (generic NXOS)
If a backup is ran on a device which is not yet supported and it's configured for sensitive data striping, the backup job will fail.
(fail reason will be "SENSITIVE_DATA_STRIPING_ERROR")
We are periodically adding support for more devices to the above list.
If you want to use sensitive data striping with any devices not listed above, please let us know.