ASA Config

Answered Question
Jul 19th, 2010

Hi

I've been tasked with removing user accounts from the asa 5520 by the Sr.Network Engineer but he told me that there is CL that i can use to decrypt the user account passwords in the config.Can anyone by chance tell me what is the command that he is speaking of, thanks in advance and have a great day.

I have this problem too.
0 votes
Correct Answer by Jennifer Halim about 6 years 6 months ago

To remove local user account from the ASA, you don't really need to know the password.

Here is the command to remove user with username of "text" for example:

clear configure username test

Here is the URL for your reference:

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/c2.html#wp2353811

Hope that helps.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
scooter817 Mon, 07/19/2010 - 10:15

One more question

once i've deleted the user accounts off the ASA, i know that they will start to call back in complaining that they can't login.

Can you send me the link so that shows how to create an account on the ASA

scooter817 Mon, 07/19/2010 - 10:57

It's telling me forbidden file or application when i click on the link

Jitendriya Athavale Mon, 07/19/2010 - 11:44

Step 1 To create the user account, enter the following  command:

hostname(config)# username name {nopassword | password password [mschap]} [privilege 
priv_level]

where the username keyword is a string from 4 to 64 characters  long.

The password password argument is a string from  3 to 16 characters long.

The mschap keyword specifies that the password is e  converted to unicode and hashed using MD4 after you enter it. Use this  keyword if users are authenticated using MSCHAPv1 or MSCHAPv2.

The privilege level argument sets the  privilege level from 0 to 15. The default is 2. This privilege level is  used with command authorization.

can you try this

anyways if its local username password its simple all you need is

username password

Actions

This Discussion