Solved

Re:  Access to con, aux, and vty ports on Cisco devices

Posted on 2004-10-10
5
829 Views
Last Modified: 2012-05-05


1.  I am wanting to know if a password is not set on a line aux or line con
for a Cisco router if that router can be logged onto without a password.

I know that if you do not put a password on the line vty lines you will
not get a prompt to logon.

For example, will the configuration below allow one to a logon prompt
without requiring a password?

line aux 0                                    
 exec-timeout 15 0                            

2.  Also, do you have to have the keyword login to get password prompt
for any line (vty, con or aux)?
For example, would you get prompted for password if have configuration below?

!
line con 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
line aux 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
 length 25
line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx


Thank you for your assistance!!
Great site!
0
Comment
Question by:zoey25
  • 2
  • 2
5 Comments
 
LVL 4

Expert Comment

by:celsmk
ID: 12271982
1) With this configuration, you will get non priviledge EXEC mode right after you type CR (Enter):
line aux 0                                    
 exec-timeout 15 0                            
!
2) You will need to configure "login" to get a password prompt to access to EXEC.

Regards,

Celsmk
0
 
LVL 11

Expert Comment

by:NetoMeter Screencasts
ID: 12271997
Hi!
if you specify the following for "line con 0":
---------------
line con 0
no login
-----------------

then you will not be prompted for a password for executive mode.

NetoMeter
0
 

Author Comment

by:zoey25
ID: 12272361
Thank you both for great feedback.

Celsmk and NetoMeter,
Re 2)
Just wanting to be sure I understand...
Do you know what the result would be if you do not have
keyword, login, but have a Password configured?
For example, in configuration below a Password is configured,
but keyword login is not set.   So...would someone be able to telnet to these
lines (since the requirement of Password is meant) and go straight to User Exec
without Password?

line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx

Thank you!



0
 
LVL 4

Accepted Solution

by:
celsmk earned 500 total points
ID: 12273034
zoey25,

I tested the configuration of line vty without "login": you will get the EXEC prompt without being asked for a password.

Regards,

Celsmk
0
 

Author Comment

by:zoey25
ID: 12273317

Great.  Thank you for testing that...I haven't had access to a router to test.

0

Featured Post

Top 6 Sources for Identifying Threat Actor TTPs

Understanding your enemy is essential. These six sources will help you identify the most popular threat actor tactics, techniques, and procedures (TTPs).

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
Static route between two Sonicwalls 6 37
Cisco MAC address finding 5 49
NSD FAIL 2 25
Server Room Hardware 5 50
Even if you have implemented a Mobile Device Management solution company wide, it is a good idea to make sure you are taking into account all of the major risks to your electronic protected health information (ePHI).
Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're looking for how to monitor bandwidth using netflow or packet s…
In this tutorial you'll learn about bandwidth monitoring with flows and packet sniffing with our network monitoring solution PRTG Network Monitor (https://www.paessler.com/prtg). If you're interested in additional methods for monitoring bandwidt…

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now