03-15-2020 02:13 AM - edited 03-15-2020 02:48 AM
how i can change telnet password with aaa authentication method configured already with below config.
logging queue-limit 2000
logging buffered 16384 informational
logging rate-limit all 1000 except errors
no logging console
enable secret 4 xxxx
!
username xxxx privilege 15 password 7 xxxxx
aaa new-model
!
!
aaa authentication login default local
aaa authentication login VTY_authen local
aaa authorization console
aaa authorization exec default local
aaa authorization exec VTY_author local
line vty 0 4
exec-timeout 30 0
authorization exec VTY_author
logging synchronous
login authentication VTY_authen
transport input all
transport output all
line vty 5 15
exec-timeout 5 0
authorization exec VTY_author
logging synchronous
login authentication VTY_authen
transport input all
transport output all
Solved! Go to Solution.
03-15-2020 02:38 AM - edited 03-15-2020 02:39 AM
Hi,
Your are highly recommended to remove the coded password from your post!! In which could be revert back to clear text easily.
username <REMOVE> privilege 15 password 7 <REMOVE>
---
Corresponding to your question, the line vty was configured to use "aaa login VTY_authen"
where VTY_authen is using local user database to authenticate user. You could simply change the password for local users:
username <USERNAME> privilege 15 secret <NEW_PASSWORD>
Then login telnet with the new username/password.
03-15-2020 02:38 AM - edited 03-15-2020 02:39 AM
Hi,
Your are highly recommended to remove the coded password from your post!! In which could be revert back to clear text easily.
username <REMOVE> privilege 15 password 7 <REMOVE>
---
Corresponding to your question, the line vty was configured to use "aaa login VTY_authen"
where VTY_authen is using local user database to authenticate user. You could simply change the password for local users:
username <USERNAME> privilege 15 secret <NEW_PASSWORD>
Then login telnet with the new username/password.
03-15-2020 10:38 AM
Hi ngkin,
Thanks for your reply..
Your solution bit works,as i want to change the password only and username will be the same old one.
regards
03-15-2020 02:57 PM
@MAK6 wrote:
Your solution bit works,as i want to change the password only and username will be the same old one.
conf t
username <same username> privilege 15 password <new password>
However @ngkin2010 is correct suggest you should change from a clear text password to a md5 authentication one
conf t
no username <same username>
username <same username> privilege 15 secret <new password>
03-15-2020 08:52 AM
Hi,
The VTY line telnet password is configured via "password" command, under "line vty". However, if you use username/password authentication, as you currently do, it means telnet is authenticated via username/password, so the line password is ignored. If you want to authenticate via line password by using AAA, do the following changes:
aaa authentication login VTY_PASS line
line vty 0 15
login authentication VTY_PASS
Regards,
Cristian Matei.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide