Google ADs

Password Prompts: Enable, Username-Password and Line vty

To add salt to wound, there are various prompts to set passwords on which can define user access on Router/Switch.Hence ,this becomes crucial to understand password requirement types and how are they configure in network and security setup.Notable is that password protection is key when it comes to audit and compliance of company IT infrastructure.

Prompts to configure passwords:

To make things simpler, we will cover multiple scenarios and understand the behaviour of managed router/L3 or L2 Switch under each scenario.

Google ADs

Related – Meaning of line vty 0 4

SCENARIO 1:

R1 is trying to telnet to R2.R2 configuration:

username abc password 0 xyz

line vty 0 4

no login

transport input telnet ssh

Output on R1 :

R1#telnet 10.1.1.2

Trying 10.1.1.2 … Open

R2>en

% No password set

R2>

Conclusion: Setting enable password on R2 allows us to telnet to R2 from R1 using the password set with enable command.

Output :

R2 config :

R2(config)#enable password cisco

R1#telnet 10.1.1.2

Trying 10.1.1.2 … Open

R2>en

Password:

R2#

SCENARIO 2:

R2 is configured with local username and password along with enable password.R2 is also configured under lint vty 04 with login command.

R2 Config:

R2(config)#username abc password 0 xyz

R2(config)#enable password cisco

R2(config)#line vty 0 4

R2(config-line)#login

R2(config-line)#password google

Now , lets validate when R1 tries to telnet to R2 :

Output :

R1#telnet 10.1.1.2

Trying 10.1.1.2 … Open

User Access Verification

Password: <Need to enter password configured under vty i.e. google >

R2>en

Password: <Need to enter password configured with enable i.e. cisco >

R2#

SCENARIO 3 :

Under R2’s line VTY used login local command in place of login.R2 Configs :

R2(config)#username abc password 0 xyz

R2(config)#enable password cisco

R2(config)#line vty 0 4

R2(config-line)#password google

R2(config-line)#login local

R1 tries to telnet to R2

Output :

R1#telnet 10.1.1.2

Trying 10.1.1.2 … Open

User Access Verification

Username: abc

Password: <Need to enter password configured with local username and password i.e. xyz >

R2>en

Password: <Need to enter password configured with enable i.e. cisco >

R2#

ABOUT THE AUTHOR

Rashmi Bhardwaj

I am here to share my knowledge and experience in the field of networking with the goal being – “The more you share, the more you learn.”

I am a biotechnologist by qualification and a Network Enthusiast by interest. I developed interest in networking being in the company of a passionate Network Professional, my husband.

I am a strong believer of the fact that “learning is a constant process of discovering yourself.”
– Rashmi Bhardwaj (Author/Editor)

Understanding Line VTY, Local Username Password & Enable Password