Can't connect directly to switch enable mode with a scrypt password

kazue58 · ‎04-11-2023

I have this weird problem.

I have done username *username* algorithm-type scrypt secret *password* on all my switches in an effort to heighten our security since on some of our switches it just makes a secret 7. But on some switches when i connect via SSH, i only get to User EXEC mode. If i then type enable i get "Error in authentication".

But, if i do username *username* privilege 15 secret *password* and try to connect with SSH, i go straight to enable mode.

I have seen this bug on both a 9300, 3850 and 2960S. I'm afraid if the switch reboots, i might not be able to connect to it again with having algorithm-type Scrypt enabled. Anyone have any idea to what is causing this?

https://mobdro.bio/ https://kodi.bio/

balaji.bandi · ‎04-11-2023

what device model and IOS code running that having that issue ?

post sample show run config to look what your AAA config looks like ? this looks like config typo issue i guess.

I have template it works as expected below :

username <username> privilege 15 password 7 <password>

aaa new-model

aaa authentication login default local

aaa authentication enable default enable

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

MHM Cisco World · ‎04-11-2023

can I see the config of AAA for both case SW work and not work?
this can be if your config is mix of AAA and local username/password and with and without enable

thanks
MHM