?
Solved

PIX 515 not using enable password

Posted on 2009-04-17
2
Medium Priority
?
649 Views
Last Modified: 2012-05-06
Hello,
I have a cisco pix 515 e that doesn't take the enable password. Instead it takes the user's password for both login and enable. I've deleted and re-added the enable password and changed the user from privilege 15 but no change. I've searched but can't find any related pages online.
Any ideas?
Thanks.
0
Comment
Question by:cavacamite
2 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 2000 total points
ID: 24174828
Most likely becuase you have this in your config.

aaa authentication enable console LOCAL

This specifies to use LOCAL auth (username/password) for enable access.

If you want to use LOCAL (username/password) for telnet/ssh/http but use the configured enable password to enter enable mode instead of LOCAL, use the following config.

aaa authentication ssh console LOCAL
aaa authentication telnet console LOCAL
aaa authentication http console LOCAL
no aaa authentication enable console LOCAL     <--remove this line from your config

Make sure you know the enable password on the PIX or change it to something new if you are unsure so you don't lock yourself out.

enable pass <newpassword>
0
 

Author Closing Comment

by:cavacamite
ID: 31571498
Thank you very much. You've completely resolved the issue.
0

Featured Post

Exciting career futures for women in IT

Education has the power to transform lives and open the door to new career opportunities. By earning an IT degree from WGU, you can become a highly skilled IT professional. Get the credentials and certifications you need to become a leader in this rewarding field.  

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question