[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Cisco ASA password protection

Posted on 2009-04-28
6
Medium Priority
?
285 Views
Last Modified: 2012-05-06
I just had a security audit, and the auditor just told me that our firewall had default passwords. I just looked at our configuration and did not find any. I am not a Cisco expert or even good at Cisco programming by any means so maybe I can get some help.

Here are the lines that I see regarding passwords:

enable password ******************* level 12 encrypted
enable password ******************* encrypted

passwd ********************* encrypted

username ****password ************************ encrypted privilege 15
username *********** password ***************** encrypted privilege 15
username ************ password ***************** encrypted



username *********** password ****************** encrypted
username *********** password *************** encrypted privilege 15


All of the usernames are custom. I have tried to log into it using cisco/cisco as the un/pw and it is denied.  Is there something that I am missing?
0
Comment
Question by:ryan80
  • 3
  • 3
6 Comments
 
LVL 4

Accepted Solution

by:
lkraven earned 2000 total points
ID: 24253131
Try logging in with a non privileged user and try "enable".  If the enable password is "cisco", there is your culprit, and it is likely to be the line:

enable password ***** encrypted
0
 
LVL 12

Author Comment

by:ryan80
ID: 24253190
ok, however i dont see any non priveledged users that would have a default user name. I dont know how they would get in even as a non priveledged user.

Thanks I will check that enable password.
0
 
LVL 4

Expert Comment

by:lkraven
ID: 24253306
Your console connection may not be protected, so anyone could plug a cable into the back of your firewall and get to your configuration.  That may be what the auditor is concerned about.
0
Veeam Disaster Recovery in Microsoft Azure

Veeam PN for Microsoft Azure is a FREE solution designed to simplify and automate the setup of a DR site in Microsoft Azure using lightweight software-defined networking. It reduces the complexity of VPN deployments and is designed for businesses of ALL sizes.

 
LVL 12

Author Comment

by:ryan80
ID: 24255258
I check and the enable password is not the default one.  What password does this line refer to?

passwd ********************* encrypted



Also the console connection is not protected to get into non privlegeded mode, but it is in a protected room, and the evaluation was through a scan box, so I doubt that is the issue.  I dont see anything, unless he is talking about being able to access it through telnet from the inside, so it would be possible to intercept the password if you were able to capture traffic inside the network.

Any other ideas?
0
 
LVL 4

Assisted Solution

by:lkraven
lkraven earned 2000 total points
ID: 24256326
passwd *** encrypted is your telnet password when you connect

I don't see what kind of authentication your are using, so I don't know if it's asking you for a username and password first or just the telnet password.
0
 
LVL 12

Author Closing Comment

by:ryan80
ID: 31575578
I checked on the telnet. It needs both a username and password and they are not set to default.  I will just wait until I see what the auditor says is actually wrong. While I dont think that the firewall is setup with best practices, I dont see any default passwords.
0

Featured Post

Nothing ever in the clear!

This technical paper will help you implement VMware’s VM encryption as well as implement Veeam encryption which together will achieve the nothing ever in the clear goal. If a bad guy steals VMs, backups or traffic they get nothing.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Suggested Courses

834 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question