Can't change the ASA 5510 enable password

Answered Question
Jan 31st, 2009

<p>Hi all,</p>

<p>I just finished configuring an ASA 5510 with AAA , but if I am trying ti change the enabled password I cant do it!</p>

<p>The curious thing is that the firewall sets up as enable the same password given with the username.</p>

<p>Anybody seen this before!</p>

<p>Thanks</p>

<p> </p>

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Richard Burts Sun, 02/01/2009 - 15:00

Vlad

If we could know details of how you configured the ASA we might be able to give better answers to your question. It sound like you have configured authentication for enable to use the same authentication server that you use for login authentication. If that is the case then it is the expected behavior that you would authenticate to enable mode with the same password that you use for user mode. If you have configured authentication for enable to use TACACS (or Radius) with LOCAL as a backup method, then if the ASA were not able to communicate with the authentication server then it would use the configured enable password. But if it is configured to use TACACS (or Radius) as primary and if it can communicate with the authentication server then it will not use the configured enable password.

HTH

Rick

hunnetvl01 Mon, 02/02/2009 - 01:27

Rick,

This is what I did , nothing different then my previous configurations

aaa authentication enable console LOCAL

aaa authentication ssh console LOCAL

Thanks,

Vlad

hunnetvl01 Mon, 02/02/2009 - 12:27

After a sh curpriv ..I just realised that my username has privilege 15.

Could this be the problem?

Thanks,

Vlad

Actions

This Discussion