Encrypt VTY Password

Unanswered Question
Jan 27th, 2009
User Badges:

hey all, anyone know how to encrypt the password under line vty? it is a level 7 password and can be easily decoded. we used the global service password-encryption command but it only encrypts the enable secret to level 5. the vty still remains at level 7.


thanks

-robert

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
Joseph W. Doherty Tue, 01/27/2009 - 17:38
User Badges:
  • Super Bronze, 10000 points or more

I'm not sure that it can be done.


If someone having just the connection password is a real concern, you might consider either mucking about with privledge level (perhaps having VTY start at level 0?) or switch to user authenication (best would be external).

Richard Burts Tue, 01/27/2009 - 19:15
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Robert


The list of what can be encrypted with MD5 (level 5 encryption) has slightly increased. But it does not yet include the line password for the vty lines. If you are concerned about that then I believe that the suggestion from Joseph that you use external authentication is good or perhaps that you configure local authentication and configure a local user ID using the ability to configure a level 5 password for local user IDs.


HTH


Rick

Actions

This Discussion