Encrypt VTY Password

Unanswered Question
Jan 27th, 2009

hey all, anyone know how to encrypt the password under line vty? it is a level 7 password and can be easily decoded. we used the global service password-encryption command but it only encrypts the enable secret to level 5. the vty still remains at level 7.

thanks

-robert

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Joseph W. Doherty Tue, 01/27/2009 - 17:38

I'm not sure that it can be done.

If someone having just the connection password is a real concern, you might consider either mucking about with privledge level (perhaps having VTY start at level 0?) or switch to user authenication (best would be external).

Richard Burts Tue, 01/27/2009 - 19:15

Robert

The list of what can be encrypted with MD5 (level 5 encryption) has slightly increased. But it does not yet include the line password for the vty lines. If you are concerned about that then I believe that the suggestion from Joseph that you use external authentication is good or perhaps that you configure local authentication and configure a local user ID using the ability to configure a level 5 password for local user IDs.

HTH

Rick

Actions

This Discussion