02-07-2010 08:17 AM - edited 03-06-2019 09:36 AM
For the last couple of days I have been trying to solve a great ssh2 mystery for my switch ws2950 (ver 12.1(22)ea13):
I put:
(config) Username tadas password cisco
But after show run I get: username tadas password 0 cisco
So the question is: why do i get password 0 cisco ? And in fact none of my (0 cisco or just cisco) passwords works for logging into switch via ssh2. I am using Tera Term Web 3.1 Though i don't have any problem to connect via com1.
Thank you.
02-07-2010 08:54 AM
Hello Tadas,
Are you running a crypto version of IOS on your device to support SSH?
Can you access the box via telnet?
Also for the user name and password config try this:
username test privilege 15 password cisco
Can you provide sh ver from the switch?
Can you provide the switch model number?
Reza
02-07-2010 02:47 PM
Hello Reza,
Thank you for your help.
These are my specifications:
My crypto state: installed platform: rp crypto engine
Telnet forks fine and it doesn’t show any errors with fast Ethernet.
SSH enabled –version 2.0
My switch model number: WS-c2950-12
Ps. Is it logical to assume that I have faulty IOS or bug ?
IOS C2950 Software (C2950 –I6K2L2Q4-M), Version 12.1(22)EA13, RELEASE SOFTWARE (fc2)
Thank you
02-07-2010 10:11 PM
Hello Reza,
Thank you for your help.
These are my specifications:
My crypto state: installed platform: rp crypto engine
Telnet forks fine and it doesn’t show any errors with fast Ethernet.
SSH enabled –version 2.0
My switch model number: WS-c2950-12
Ps. Is it logical to assume that I have faulty IOS or bug ?
IOS C2950 Software (C2950 –I6K2L2Q4-M), Version 12.1(22)EA13, RELEASE SOFTWARE (fc2)
Thank you
Hi Tadas,
Your ios should support ssh v2 just check out the below link how to enable ssh protocl in cisco router hope that help.
http://www.cisco.com/en/US/tech/tk583/tk617/technologies_tech_note09186a00800949e2.shtml#testwithssh
and for your question where "0" [default] indicates MD5 encryption on a clear text password.
Hope to help
If helpful do rate the post
Ganesh.H
02-07-2010 09:27 PM
can you paste the configuration under line vty 0 15
may be you need to add the command: transport input telnet ssh
02-11-2010 07:27 AM
service password-encryption will obscure your passwords (although not in a secure way unless you are using "secret" instead of "password")
you will also need to generate the SSH keys which is the part many people forget...
crypto key gen rsa gen mod 1024
or
crypto key gen rsa mod 1024
depending on the IOS and platform...
you will also generaly want something like:
username user1 priv 15 secret password
aaa new-model
aaa authentication login default local
aaa authorization exec default local
so that your device knows to use the local username database for login... and finally...
line vty 0 15
login authentication default
transport input ssh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide