01-27-2009 02:50 PM - edited 03-04-2019 01:00 AM
hey all, anyone know how to encrypt the password under line vty? it is a level 7 password and can be easily decoded. we used the global service password-encryption command but it only encrypts the enable secret to level 5. the vty still remains at level 7.
thanks
-robert
01-27-2009 05:38 PM
I'm not sure that it can be done.
If someone having just the connection password is a real concern, you might consider either mucking about with privledge level (perhaps having VTY start at level 0?) or switch to user authenication (best would be external).
01-27-2009 07:15 PM
Robert
The list of what can be encrypted with MD5 (level 5 encryption) has slightly increased. But it does not yet include the line password for the vty lines. If you are concerned about that then I believe that the suggestion from Joseph that you use external authentication is good or perhaps that you configure local authentication and configure a local user ID using the ability to configure a level 5 password for local user IDs.
HTH
Rick
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: