Solved

Not prompted for password on Cisco UC520 via SSH

Posted on 2010-09-22
6
915 Views
Last Modified: 2013-12-27
I have a UC520,  I've created users on it via CLI, set the Enabled/Secret passwords etc.. yet when I SSH in I can literally just type in any username for any user that exists on the system and it logs me right in to #.  It doesn't even prompt for a password.   This is obviously a huge security risk and being a bit hesitant to post my config and leave some identifying information in it I'm hoping that someone could point me in a direction.

0
Comment
Question by:ZooyorQ
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 3

Expert Comment

by:uniplast
ID: 33741237
You can give different privileges to users that you define.
At this link is explained in detail how it works

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftprienh.html
0
 

Author Comment

by:ZooyorQ
ID: 33741266
So if I lower the privilege to say 1 from its current 15 users will be prompted with a password to access privileged commands?
0
 
LVL 3

Expert Comment

by:uniplast
ID: 33741292
Yes, but  lowest level of access is 0
0
NEW Veeam Agent for Microsoft Windows

Backup and recover physical and cloud-based servers and workstations, as well as endpoint devices that belong to remote users. Avoid downtime and data loss quickly and easily for Windows-based physical or public cloud-based workloads!

 

Author Comment

by:ZooyorQ
ID: 33741826
Even with a high privilege shouldn't the user be prompted for their password though?
0
 
LVL 3

Accepted Solution

by:
uniplast earned 500 total points
ID: 33741998
Login Authentication Using Enable Password

Use the aaa authentication login command with the enable method keyword to specify the enable password as the login authentication method. For example, to specify the enable password as the method of user authentication at login when no other method list has been defined, enter the following command:

aaa authentication login default enable


Before you can use the enable password as the login authentication method, you need to define the enable password. For more information about defining enable passwords, refer to the chapter "Configuring Passwords and Privileges."

More about this is on link
http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfathen.html
0
 

Author Comment

by:ZooyorQ
ID: 33746511
The solution was changing the aaa authentication default to enable, it was currently set to none.  Thanks!
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The Zaptel people (www.zaptel.com) got kind of annoyed with the fact that they were getting bombarded with searches for the zaptel driver system for Asterisk (not to mention they own the trademark on zaptel). So, they kindly requested that Digium ch…
So you think no one can listen in on your VOIP conversations, eh? Well... if you haven't setup Secure Real Time Transport (SRTP), your voice communications can be hacked into by just about anyone! First, let's talk about the intended audience for…
In this video, viewers are given an introduction to using the Windows 10 Snipping Tool, how to quickly locate it when it's needed and also how make it always available with a single click of a mouse button, by pinning it to the Desktop Task Bar. Int…
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…

724 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question