Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
12533
Views
0
Helpful
4
Replies

service password-encryption

Go to solution
rezaalikhani
Level 3
Level 3

‎12-23-2005 11:49 PM - edited ‎03-03-2019 01:14 AM

what does this command do?

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP
In response to rezaalikhani

‎12-24-2005 03:27 AM

Hello,

the process is not reversible. In your case, somebody has entered the command ´service password-encryption´, after which the passwords were encrypted. After that, ´no service password-encryption´ has been entered, but this affects only newly configured passwords, not existing ones. The existing ones will remain encrypted...

Does that make sense ?

Regards,

GP

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Georg Pauwen
VIP
VIP

‎12-24-2005 12:52 AM

Hello,

let´s say you enter the following to your router configuration:

Router#conf t

Router(config)#username xxxx password xxxx

Router(config)#line vty 0 4

Router(config-line)#password xxxx

The configuration that would be visible to anybody with access to your router would be:

Router

!

username xxx password xxx

!

line vty 0 4

password xxxx

login

That means that anybody could see the passwords, which is a otential security risk. Now, after entering ´service password-encryption´, the configuration would look like this:

Router

!

username xxx password xxxxx

!

line vty 0 4

password xxx

login

As you can see, now the passwords are encrypted. Be aware though that these passwords are fairly easy to decrypt, there are numerous tools available on the Internet which let you decrypt them, such as this:

Cisco weak password decryption applet

http://users.skynet.be/glu/ciscopw.htm

HTH,

GP

0 Helpful

Go to solution
rezaalikhani
Level 3
Level 3
In response to Georg Pauwen

‎12-24-2005 02:22 AM

Thanks for your reply. but please see the following "show run" output in my Cisco CatOS 3550 switch:

no service password-encryption

.

.

.

.

.

.

.

line con 0

line vty 0 4

password 7 0832455A0C4B50434v5D5F52

line vty 5 15

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to rezaalikhani

‎12-24-2005 03:27 AM

Hello,

the process is not reversible. In your case, somebody has entered the command ´service password-encryption´, after which the passwords were encrypted. After that, ´no service password-encryption´ has been entered, but this affects only newly configured passwords, not existing ones. The existing ones will remain encrypted...

Does that make sense ?

Regards,

GP

0 Helpful

Go to solution
rezaalikhani
Level 3
Level 3
In response to Georg Pauwen

‎12-25-2005 08:12 PM

Ok, thanks.

0 Helpful
Customers Also Viewed These Support Documents