Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1436
Views
5
Helpful
4
Replies

Try to understand "enable secret ...." and "user admin password..."

Service Informatique
Level 1
Level 1

‎07-29-2021 05:52 AM - edited ‎07-29-2021 05:52 AM

Hello and sorry for my english,

 

I don't really understand the différence between : 

enable secret 5 *****
username admin privilege 15 password 7 *****

 

I understand that "enable secret 5 ***" is the password use to pass in enable mode. 5 if for MD5
"username admin...." if to create account to log on to the switch ?

 

But if i want to let a service provider to connect to switch but i don't want to transmite my password -> i create a new username but how to do for "enable secret", not possible to have different password ?

 

Thanks a lot

Labels:
0 Helpful
4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame

‎07-29-2021 06:29 AM 

i create a new username but how to do for "enable secret", not possible to have different password ?

you can create new user , you do not need to give enable pasword to the users.

 

if the privelage level 15, it will drop directly to # prompt when they login. (depends on config)

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Service Informatique
Level 1
Level 1
In response to balaji.bandi

‎07-29-2021 06:39 AM

for the moment, i have on my switchs : "username admin privilege 15 password 7 *****"

when i connect on SSH (vty 0 4) it ask for enable password

0 Helpful

Reza Sharifi
Hall of Fame
Hall of Fame
In response to Service Informatique

‎07-29-2021 07:08 AM

Hi,

when i connect on SSH (vty 0 4) it ask for enable password

If you want the switch not to ask you for the enable password, add "privilege level 15" command to your vty lines. 

Be careful when working with username and password, because if the switch is in production and if you make a mistake, you can lock yourself out of the switch, and the only way you can recover the switch is by using the password recovery procedure which requires a reboot and causes downtime.

Overall, if you want the service provider to have access to your device, you should use an ACS or radius server so, they can generate their own password.

HTH

balaji.bandi
Hall of Fame
Hall of Fame
In response to Service Informatique

‎07-29-2021 08:08 AM

here is the config to add :

 

config t

!

ine vty 0 4

privilege level 15

!

end

 

Note : do not write the config until you test all workng  - if anything go wrong you can reboot the device to get back known good config.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card