Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Cisco 1712: Can't "enable" any longer...

After deleting the original user via SDM and creating a new one (privilege level 15, view name "SDM_Administrator (root)") I'm unable to use "enable" command via telnet any longer.

It asks me for a password, but neither the old nor the new one are working.

What can I do ?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: Cisco 1712: Can't "enable" any longer...

Still looks like your enable secret password or telnet password is holding you out. Also, AAA is working as it should be. You need to go to site where the router is a follow the procedure in the document below. It is comprehensive and accurate. This works for a 1721 also, please read and understand before doing it.

http://www.cisco.com/en/US/products/hw/routers/ps259/products_password_recovery09186a0080094675.shtml

This will allow you to see the config that is stored on the router and then you will be able to decrypt the passwords.

HTH

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
7 REPLIES
New Member

Re: Cisco 1712: Can't "enable" any longer...

Could I solve this issue by disabling AAA ? It is enabled for whatever reason (probably by default)... or do I open any security hole when disabling it ?

Re: Cisco 1712: Can't "enable" any longer...

Hi again,

No problem with help.

It looks like you just need to use the telnet password. at the end of the config you posted on the other thread, at the end is line vty 0 4. under that is a password, if it is encrypted, then use this link to decrypt. http://users.skynet.be/glu/ciscopw.htm.

HTH > Please rate is it does!!!

Cheers

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
New Member

Re: Cisco 1712: Can't "enable" any longer...

I was not aware that encrypted passwords are so easy to decode... anyway, it still fails (I tried this standard password over and over already). So this was the reason why I not thought about just viewing the config to reminding to the password ;-)

Here is the running config. There were some changes done to the original posted, so maybe I did a mistake there.

It does not fit into one message, so I have attached it.

Re: Cisco 1712: Can't "enable" any longer...

Still looks like your enable secret password or telnet password is holding you out. Also, AAA is working as it should be. You need to go to site where the router is a follow the procedure in the document below. It is comprehensive and accurate. This works for a 1721 also, please read and understand before doing it.

http://www.cisco.com/en/US/products/hw/routers/ps259/products_password_recovery09186a0080094675.shtml

This will allow you to see the config that is stored on the router and then you will be able to decrypt the passwords.

HTH

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
New Member

Re: Cisco 1712: Can't "enable" any longer...

After reading the instructions you provided how to reset passwords, I decided to give SDM a last try and reset the enable password from there again.

I altered the enable password as well as the password of my SDM user account. Now I'm able to "enable" again, the password is accepted :-)

However I have no idea what caused this: I used the online tool you provided to me in your previous mail to decrypt the existing passwords. They were stored exactly as I typed them.

Re: Cisco 1712: Can't "enable" any longer...

Hey,

Thats a bit odd. Maybe typed Passwords wrong, or whatever, but at least you sorted it. Thanks for letting me know how you did it, very clever :)

Thanks

Stephen

========================== http://www.rconfig.com A free, open source network device configuration management tool, customizable to your needs! - Always vote on an answer if you found it helpful
New Member

Re: Cisco 1712: Can't "enable" any longer...

> Thanks for letting me know how you did it, very clever :)

Not necessarily clever, but in the hope you had an idea why this happened ;-) I can really exclude typos, since I tried it surely a dozen times (no shift lock key pressed, too ;-)

Anyway, it works and I'm happy. When similar occurs again in the future, I know that simply replacing the password in SDM does the trick.

For being sure, I altered the passwords completely, since I tried to decode them all in the Java decoder on that website you provided to me (not sure how trusty this is).

Again, thank you for your help.

143
Views
10
Helpful
7
Replies