Solved

Re:  Access to con, aux, and vty ports on Cisco devices

Posted on 2004-10-10
5
833 Views
Last Modified: 2012-05-05


1.  I am wanting to know if a password is not set on a line aux or line con
for a Cisco router if that router can be logged onto without a password.

I know that if you do not put a password on the line vty lines you will
not get a prompt to logon.

For example, will the configuration below allow one to a logon prompt
without requiring a password?

line aux 0                                    
 exec-timeout 15 0                            

2.  Also, do you have to have the keyword login to get password prompt
for any line (vty, con or aux)?
For example, would you get prompted for password if have configuration below?

!
line con 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
line aux 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
 length 25
line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx


Thank you for your assistance!!
Great site!
0
Comment
Question by:zoey25
  • 2
  • 2
5 Comments
 
LVL 4

Expert Comment

by:celsmk
ID: 12271982
1) With this configuration, you will get non priviledge EXEC mode right after you type CR (Enter):
line aux 0                                    
 exec-timeout 15 0                            
!
2) You will need to configure "login" to get a password prompt to access to EXEC.

Regards,

Celsmk
0
 
LVL 11

Expert Comment

by:NetoMeter Screencasts
ID: 12271997
Hi!
if you specify the following for "line con 0":
---------------
line con 0
no login
-----------------

then you will not be prompted for a password for executive mode.

NetoMeter
0
 

Author Comment

by:zoey25
ID: 12272361
Thank you both for great feedback.

Celsmk and NetoMeter,
Re 2)
Just wanting to be sure I understand...
Do you know what the result would be if you do not have
keyword, login, but have a Password configured?
For example, in configuration below a Password is configured,
but keyword login is not set.   So...would someone be able to telnet to these
lines (since the requirement of Password is meant) and go straight to User Exec
without Password?

line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx

Thank you!



0
 
LVL 4

Accepted Solution

by:
celsmk earned 500 total points
ID: 12273034
zoey25,

I tested the configuration of line vty without "login": you will get the EXEC prompt without being asked for a password.

Regards,

Celsmk
0
 

Author Comment

by:zoey25
ID: 12273317

Great.  Thank you for testing that...I haven't had access to a router to test.

0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

This is an article about my experiences with remote access to my clients (so that I may serve them) and eventually to my home office system via Radmin Remote Control. I have been using remote access for over 10 years and have been improving my metho…
Let’s list some of the technologies that enable smooth teleworking. 
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

778 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question