Announcement

Collapse
No announcement yet.

Configuring password on Cisco devices

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Configuring password on Cisco devices

    Hi,

    **********************************
    Cisco device A configlet:

    username operations password 7 xxx
    enable secret 5 xxx
    **********************************

    **********************************
    Cisco device B configlet:

    username Operations secret 5 $1$H/gS$n8Q/HJu5v.MsFmdkqD/KV1
    ***************************************

    Are the 2 devices (Cisco A & B) protected the same same way using password encryption?

    I noticed Cisco device B is no longer using "enable secret" config line.

    Thanks,
    olaninidaniela

  • #2
    Re: Configuring password on Cisco devices

    if your console or vty is has "login local" you will skip the enable password.

    Comment


    • #3
      Re: Configuring password on Cisco devices

      As for the question - no the two routers are not protected the same way. Either way has it shortcomings. If you you use "secret" like in device "B" you are using MD5 crypto of the password which is good (anyway you cannot use this user for some protocols e.g. CHAP), but you do not have "enable secret" which gives all users who can access cli of your device privileged access -which is bad usually. In device "A" you have set "enable secret" which is good, but you are using cryptography (7) which is very weak for the user password which is bad (but this is sometimes normal case when you use this user for some protocols like CHAP). So the usual in more cases may be the config of device "A".

      Comment


      • #4
        Re: Configuring password on Cisco devices

        Many thanks alexbg and Garen!
        At least I have an idea about these commands.

        I think the best thing is to discuss with our network designers which ones should be implemented and set the agreed commands to be the standard in tne network.

        Kind regards,
        olaninidaniela

        Comment

        Working...
        X