I agree here. If we can roll new md5 keys without session resets I am all
for it. I believe Juniper needs to fix their implementation. Especially
with md5 rolling out network wide for quite a few networks. If an employee
leaves and we have to reset the md5 passwords for the entire network with a
hybrid of Juniper and Ciscos, I would love to not have to bounce all of my
sessions. I think your best bet is to call JTAC and ask for a feature
request.
-Chris