Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
11204
Views
4
Helpful
7
Replies

Cisco 2600 Router Telnet Login Problem

Go to solution
A.K.M. Sayeed
Level 1
Level 1

‎03-20-2011 01:33 AM - edited ‎03-06-2019 04:09 PM

I have about 15 routers in my office. One of them is Cisco 2600 series router. The problem is that before a couple of days I have configured the router. Its working fine. But whenever I telnet the router from any of LAN host the routers prompts for Username then password and then it directly goes to Privileged mode (Router1#). But other routers don’t behave like this. They first prompts for direct password then enable mode then prompts for enable password then privileged mode.

I have set enable password, line vty password etc.

Now I like to configure the router to prompt as :

1.      Password

2.      > enable

3.      Enable password

4.      #

How to do that? Please help.

Labels:
0 Helpful
3 Accepted Solutions

Accepted Solutions

Go to solution
johnlloyd_13
Level 9
Level 9

‎03-20-2011 02:09 AM

hi,

try adding these commands and test again.

Router(config)#enable secret

Router(config)#username privilege 15 secret

Router(config)#access-list 1 permit

Router(config)#line vty 0 4
Router(config-line)#login local

Router(config-line)#access-class 1 in

Router#write memory

View solution in original post

0 Helpful

Go to solution
cadet alain
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎03-20-2011 02:17 AM

Hi,

if you put login local under a vty line and the user has got privilege 15 then you'll have the behaviour you don't want.

To fulfiil your need you must create a user without specifying privilege then create an enable password and put login local under vty lines:

user test secret test

enable secret test

line vty 0 15

login local

Regards.

Alain.

Don't forget to rate helpful posts.

View solution in original post

0 Helpful

Go to solution
smartd_03
Level 1
Level 1

‎03-20-2011 10:08 AM

if you dont want username authentication during login then you just have to enable secret. Then under line vty you will have to configure login and password.

router(config)enable secret

router(config)line vty 0 4

router(config-line)login

router(config-line)password


with the above setting when you then telnet to the router, you will have

User Access  Verification

Password:

router>en

password:

so there is no username authentication. just password authentication twice.

View solution in original post

0 Helpful
7 Replies 7

Go to solution
johnlloyd_13
Level 9
Level 9

‎03-20-2011 02:09 AM

hi,

try adding these commands and test again.

Router(config)#enable secret

Router(config)#username privilege 15 secret

Router(config)#access-list 1 permit

Router(config)#line vty 0 4
Router(config-line)#login local

Router(config-line)#access-class 1 in

Router#write memory

0 Helpful

Go to solution
cadet alain
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎03-20-2011 02:17 AM

Hi,

if you put login local under a vty line and the user has got privilege 15 then you'll have the behaviour you don't want.

To fulfiil your need you must create a user without specifying privilege then create an enable password and put login local under vty lines:

user test secret test

enable secret test

line vty 0 15

login local

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful

Go to solution
johnlloyd_13
Level 9
Level 9
In response to cadet alain

‎03-20-2011 04:33 AM

hi alain,

im just wondering what kind of unusual behavior would happen for this scenario. please elaborate. i tested using the setup i suggested and it just works fine.

2620XM_A#telnet 192.168.1.2
Trying 192.168.1.2 ...Open


User Access Verification

Username: cisco
Password:
2620XM_B#

-----

2620XM_B#sh run
Building configuration...

Current configuration : 543 bytes
!
version 12.2
no service timestamps log datetime msec
no service timestamps debug datetime msec
no service password-encryption
!
hostname 2620XM_B
!
!
!
enable secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0
!
!
!
!
!
!
username cisco privilege 15 secret 5 $1$mERr$hx5rVt7rPNoS4wqbXKX7m0
!
!
!
!
!
!
!
!
!
!
!
interface FastEthernet0/0
no ip address
duplex auto
speed auto
shutdown
!
interface Serial0/0
ip address 192.168.1.2 255.255.255.0
!
ip classless
!
!
!
!
!
!
!
line con 0
line vty 0 4
login local
line vty 5 15
login local
!
!
!
end

0 Helpful

Go to solution
cadet alain
VIP Alumni
VIP Alumni
In response to johnlloyd_13

‎03-20-2011 10:29 AM

Hi John,

So you were put directly into enable mode without typing a password but this is the behaviour the OP didn't want.

Regards.

Alain.

Don't forget to rate helpful posts.

Go to solution
johnlloyd_13
Level 9
Level 9
In response to cadet alain

‎03-20-2011 09:05 PM

hi alain,

i double check my simulation output and it didn't prompt for enable password. you were right and thanks for the explanation!

0 Helpful

Go to solution
smartd_03
Level 1
Level 1

‎03-20-2011 02:20 AM

just enable secret should solve the issue. then you will be prompted just for a password which leads you to the priviledge mode.

0 Helpful

Go to solution
smartd_03
Level 1
Level 1

‎03-20-2011 10:08 AM

if you dont want username authentication during login then you just have to enable secret. Then under line vty you will have to configure login and password.

router(config)enable secret

router(config)line vty 0 4

router(config-line)login

router(config-line)password


with the above setting when you then telnet to the router, you will have

User Access  Verification

Password:

router>en

password:

so there is no username authentication. just password authentication twice.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card