Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1276
Views
3
Helpful
10
Replies

I keep locking myself out of a switch on CML when configuring line con

Go to solution
BruteForce
Level 1
Level 1

‎11-28-2023 09:56 PM

I'm trying to do something simple and I keep logging myself out. Here are the commands I enter in this order.

>username cisco privilege 15 secret 5 cisco

>aaa new-model
>aaa authentication login default local
>aaa authorization exec default local if-authenticated

>line con 0
>login authentication default

 

At this point I can log completely out, but then I get an authentication failed when trying to log back in. I KNOW I'm not fat fingering the password or adding an extra space after it. Also when I type "sh run | s line", the command I added under line con 0 does not appear. exec-timeout 0 0 will appear though.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
M02@rt37
VIP
VIP
In response to BruteForce

‎11-28-2023 10:24 PM

@BruteForce 

When using the secret 5 option in the username command, you should enter the hashed password directly. The hashed password is the encrypted form of the actual password...

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

View solution in original post

10 Replies 10

Go to solution
MHM Cisco World
VIP
VIP

‎11-28-2023 10:02 PM

You use local database user/password or radius?

0 Helpful

Go to solution
BruteForce
Level 1
Level 1
In response to MHM Cisco World

‎11-28-2023 10:03 PM

Local database

0 Helpful

Go to solution
BruteForce
Level 1
Level 1

‎11-28-2023 10:13 PM

Well, it looks like it's because I'm specifying secret 5 instead of secret. If I use secret 5, I'm I supposed to enter the hashed password you'd see on a "sh run" command?

0 Helpful

Go to solution
M02@rt37
VIP
VIP
In response to BruteForce

‎11-28-2023 10:24 PM

@BruteForce 

When using the secret 5 option in the username command, you should enter the hashed password directly. The hashed password is the encrypted form of the actual password...

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.

Go to solution
MHM Cisco World
VIP
VIP
In response to BruteForce

‎11-28-2023 10:27 PM

Use password only without 

Secret or secret 5

And check 

MHM

Go to solution
MHM Cisco World
VIP
VIP

‎11-28-2023 10:37 PM

You can access but you  can not go to conf t ?

If this case here ?

0 Helpful

Go to solution
M02@rt37
VIP
VIP

‎11-28-2023 10:42 PM

@BruteForce 

Log first

Do: debug aaa authentication and terminal monitor

Open a new ssh session and see debug.

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎11-30-2023 07:24 AM

not end yet 

Please try below

username cisco privilege 15 secret 5 cisco

Then show running 

Share running here

Waiting your reply

MHM

0 Helpful

Go to solution
BruteForce
Level 1
Level 1
In response to MHM Cisco World

‎12-01-2023 07:37 AM

Hello, the issue was "Secret 5" rather than "Secret". I didn't attempt to input the password in the running config, but I removed "secret 5" and was able to log in just fine. 

0 Helpful

Go to solution
MHM Cisco World
VIP
VIP
In response to BruteForce

‎12-01-2023 07:49 AM

You are learning so you must not skip any info.

You config is correct 

As I know we can add unencrypted passwords in config 

But when we show run it appear as encrypt 

Then we use what appear in config to access device.

MHM

Customers Also Viewed These Support Documents