Link to home
Create AccountLog in
Routers

Routers

--

Questions

--

Followers

Top Experts

Avatar of DilbertW01
DilbertW01

Cisco router - % Error in authentication. message

I have a new Cisco 2811 router.  I can telnet to the route successfully.  However, when I try to issue the enable command, I get the following:

><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><
Username: <user name>
Password:
TestRouter>enable
% Error in authentication.
TestRouter>
><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><

I do have crypto commands entered for future Easy VPN setup.  It is my main suspicion of what is causing the problem.  I have edited my configuration down to the relevant commands below and removed usernames and passwords as needed:

><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><
!
aaa new-model
!
aaa authentication login USERLIST local
!
aaa session-id common
!
username <user name> privilege 15 password <user password>
!
crypto ipsec client ezvpn 3G-VPN
 connect auto
 group 3G-VPN key <key>
 mode network-extension
 peer 172.16.1.1
 username <crypto user name> password <password>
 xauth userid mode local
!
interface FastEthernet0/0
 ip address 10.1.9.1 255.255.255.0
 ip nat inside
 ip virtual-reassembly
 duplex auto
 speed auto
 crypto ipsec client ezvpn 3G-VPN inside
!
line con 0
!
line aux 0
!
line vty 0 4
 login authentication USERLIST
!

><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><><

Any suggestions on the cause of '% Error in authentication. message'?
Thank you!

Zero AI Policy

We believe in human intelligence. Our moderation policy strictly prohibits the use of LLM content in our Q&A threads.

ASKER CERTIFIED SOLUTION
Avatar of JFrederick29JFrederick29🇺🇸

Link to home
membership
Log in or create a free account to see answer.
Signing up is free and takes 30 seconds. No credit card required.
Create Account
Avatar of DilbertW01DilbertW01

ASKER

The enable password has not been set.  Should I chalk this up to a big 'DUH' on my part?
Avatar of JFrederick29JFrederick29🇺🇸

It's a learning experience :-)
Avatar of DilbertW01DilbertW01

ASKER

Chalk this one to a big 'DUH' on my part.  I never set the enable (actually enable secret) in this case.  After putting it in place, I tried my telnet session again and was able to use the enable command.
Thank you for the quick reply!!!
Reward 1Reward 2Reward 3Reward 4Reward 5Reward 6

EARN REWARDS FOR ASKING, ANSWERING, AND MORE.

Earn free swag for participating on the platform.

Avatar of DilbertW01DilbertW01

ASKER

Thanks for helping me out of my momentary lapse of brains.
Avatar of sstiresstire🇺🇸

If you create a user acct with priv lev 15 access, you really do not need a seperate enable password.  That's the point of level 15 access.  Also I see that you're using a userlist on the vty lines?  Most commonly you will find the following on vty lines:


line vty 0 4
 privilege level 15
 login local
 transport input telnet ssh
line vty 5 15
 privilege level 15
 login local
 transport input telnet ssh
Routers

Routers

--

Questions

--

Followers

Top Experts

A router is a networking device that forwards data packets between computer networks. Routers perform the "traffic directing" functions on the Internet. The most familiar type of routers are home and small office cable or DSL routers that simply pass data, such as web pages, email, IM, and videos between computers and the Internet. More sophisticated routers, such as enterprise routers, connect large business or ISP networks up to the powerful core routers that forward data at high speed along the optical fiber lines of the Internet backbone. Though routers are typically dedicated hardware devices, use of software-based routers has grown increasingly common.