How to setup an enable mode password on ASA5510

dbrown · ‎01-25-2013

Probably a very simple question for you guys, how do I setup an enable password for an ASA 5510? At the moment its setup to authenticate using RADIUS (which I'd like to keep doing) but I need to setup an enable mode password. Is it as simple as this:

enable password secretpassword

Karsten Iwen · ‎01-25-2013

Yes, it's really that easy.

And if you are used to IOS, don't be confused by the "password". On the ASA, these are always cryptographically protected passwords much like "enable secret ..." in IOS.

--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni

dbrown · ‎01-25-2013

Thank you Karsten! I'd like to ask a follow up...can the enable mode password be setup per user? If so can it be set by logging in with that user and executing the command above or would that force everyone that logs in to use it to get into enable mode?

Karsten Iwen · ‎01-25-2013

That can only be done on a TACACS-server, but not local on the ASA. There all users share the same password. The only differentiation can be don with different provilege-levels. There each level can have an own password and also the users can have assigned a privilege level.

--
Don't stop after you've improved your network! Improve the world by lending money to the working poor:
http://www.kiva.org/invitedby/karsteni