Can't change the ASA 5510 enable password

Answered Question
Jan 31st, 2009
User Badges:

<p>Hi all,</p>

<p>I just finished configuring an ASA 5510 with AAA , but if I am trying ti change the enabled password I cant do it!</p>

<p>The curious thing is that the firewall sets up as enable the same password given with the username.</p>

<p>Anybody seen this before!</p>

<p>Thanks</p>

<p> </p>

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Richard Burts Sun, 02/01/2009 - 15:00
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN


Vlad


If we could know details of how you configured the ASA we might be able to give better answers to your question. It sound like you have configured authentication for enable to use the same authentication server that you use for login authentication. If that is the case then it is the expected behavior that you would authenticate to enable mode with the same password that you use for user mode. If you have configured authentication for enable to use TACACS (or Radius) with LOCAL as a backup method, then if the ASA were not able to communicate with the authentication server then it would use the configured enable password. But if it is configured to use TACACS (or Radius) as primary and if it can communicate with the authentication server then it will not use the configured enable password.


HTH


Rick

hunnetvl01 Mon, 02/02/2009 - 01:27
User Badges:

Rick,


This is what I did , nothing different then my previous configurations


aaa authentication enable console LOCAL

aaa authentication ssh console LOCAL


Thanks,

Vlad

hunnetvl01 Mon, 02/02/2009 - 12:27
User Badges:

After a sh curpriv ..I just realised that my username has privilege 15.


Could this be the problem?

Thanks,

Vlad

hunnetvl01 Tue, 02/03/2009 - 03:49
User Badges:

Thank you Jithesh!

I will upgrade to 8.0 then!


Regards,

Vlad

Actions

This Discussion