Solved

Re:  Access to con, aux, and vty ports on Cisco devices

Posted on 2004-10-10
5
837 Views
Last Modified: 2012-05-05


1.  I am wanting to know if a password is not set on a line aux or line con
for a Cisco router if that router can be logged onto without a password.

I know that if you do not put a password on the line vty lines you will
not get a prompt to logon.

For example, will the configuration below allow one to a logon prompt
without requiring a password?

line aux 0                                    
 exec-timeout 15 0                            

2.  Also, do you have to have the keyword login to get password prompt
for any line (vty, con or aux)?
For example, would you get prompted for password if have configuration below?

!
line con 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
line aux 0
 exec-timeout 15 0
 password 7 xxxxxxxxxx
 length 25
line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx


Thank you for your assistance!!
Great site!
0
Comment
Question by:zoey25
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
5 Comments
 
LVL 4

Expert Comment

by:celsmk
ID: 12271982
1) With this configuration, you will get non priviledge EXEC mode right after you type CR (Enter):
line aux 0                                    
 exec-timeout 15 0                            
!
2) You will need to configure "login" to get a password prompt to access to EXEC.

Regards,

Celsmk
0
 
LVL 11

Expert Comment

by:NetoMeter Screencasts
ID: 12271997
Hi!
if you specify the following for "line con 0":
---------------
line con 0
no login
-----------------

then you will not be prompted for a password for executive mode.

NetoMeter
0
 

Author Comment

by:zoey25
ID: 12272361
Thank you both for great feedback.

Celsmk and NetoMeter,
Re 2)
Just wanting to be sure I understand...
Do you know what the result would be if you do not have
keyword, login, but have a Password configured?
For example, in configuration below a Password is configured,
but keyword login is not set.   So...would someone be able to telnet to these
lines (since the requirement of Password is meant) and go straight to User Exec
without Password?

line vty 0 4
 access-class 10 in
 exec-timeout 15 0
 password 7 xxxxxxxxx

Thank you!



0
 
LVL 4

Accepted Solution

by:
celsmk earned 500 total points
ID: 12273034
zoey25,

I tested the configuration of line vty without "login": you will get the EXEC prompt without being asked for a password.

Regards,

Celsmk
0
 

Author Comment

by:zoey25
ID: 12273317

Great.  Thank you for testing that...I haven't had access to a router to test.

0

Featured Post

Free Tool: Postgres Monitoring System

A PHP and Perl based system to collect and display usage statistics from PostgreSQL databases.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Short answer to this question: there is no effective WiFi manager in iOS devices as seen in Windows WiFi or Macbook OSx WiFi management, but this article will try and provide some amicable solutions to better suite your needs.
In this article, I am going to show you how to simulate a multi-site Lab environment on a single Hyper-V host. I use this method successfully in my own lab to simulate three fully routed global AD Sites on a Windows 10 Hyper-V host.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Get a first impression of how PRTG looks and learn how it works.   This video is a short introduction to PRTG, as an initial overview or as a quick start for new PRTG users.

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question