Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2940
Views
0
Helpful
8
Replies

aaa newmodel

cmehlo
Level 1
Level 1

‎03-14-2001 10:32 PM - edited ‎02-21-2020 09:56 AM

I effected an aaa new-model on my remote cisco router.I cant login its asking for username which i didnt put.Is there a default username that i should use to access this router .please help.

Labels:
0 Helpful
8 Replies 8

seaggu-kim
Level 1
Level 1

‎03-15-2001 04:16 PM

i will givey some informatios of my configuration about the router

refer to these contents

have good loucky !!

===contents of my router==conf t

aaa new-model

aaa authen login default tacacs+ local

aaa authen login conmethod local

aaa authen login vtymethod tacacs+ local

username tkdlqj pass 0 rkfaorl3

aaa account exec start-stop tacacs+

aaa account commands 1 start-stop tacacs+

aaa account commands 15 start-stop tacacs+

aaa account connection start-stop tacacs+

aaa account system start-stop tacacs+

tacacs-server key key_number

0 Helpful

sumeerbhat
Level 1
Level 1

‎03-16-2001 12:40 AM

Hi,

you can use password recovery procedure of your router (using confreg ) which will remove your running-config but not startup-config(nvram) . then copy running-config to starup-config and provide username and password before exit .

For more information , mail me at sumeer_bhat@usa.net

BYE

0 Helpful

j.dambrosia
Level 1
Level 1
In response to sumeerbhat

‎03-24-2001 08:16 AM

In both textbooks I have checked recovering a password requires changing confreg bit 6 to on by changing 0x2102 to 0x2142. But the 4 would turn on bit 7. I'm an instructor and I need to explain this to my students. Help!

0 Helpful

gregg.campbell
Level 1
Level 1
In response to j.dambrosia

‎03-26-2001 08:20 AM

You're not doing the Hex conversion properly. The second digit from the right contains bits 8,7,6,5. Setting bit 6 (0010) = 4. Hope that helps. See

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/distrdir/dd2501/maint.htm#xtocid1209619

for more detail.

Ggg

0 Helpful

sumeerbhat
Level 1
Level 1
In response to j.dambrosia

‎03-26-2001 10:53 PM

Hi,

Actually the binary form of the register value (0x2102) is

0010 0001 0000 0010

and for (0x2142) :

0010 0001 0100 0010

Hence starting from far-right, you have turn bit 6

ON , not bit 7.

Anyway for more details , you can mail me at

sumeer_bhat@yahoo.com

0 Helpful

rajesh.verma
Level 1
Level 1
In response to sumeerbhat

‎05-25-2001 02:34 PM

Actually the bit counting starts from far right and strats from 0 to 15 and so its 6th bit.

0 Helpful

vachon
Level 1
Level 1

‎07-16-2001 06:26 AM

Can you provide more information ? Are you using a TACACS+ server ? Do you have an access-list which is preventing the authentication from working correctly ? Is there someone at the site who can console in and remove the aaa statement ?

0 Helpful

aosaw
Level 1
Level 1

‎08-02-2001 01:04 AM

If you apply the aaa new-model command by accident and you are asked for a password, first see if the configuration change has been made to NVRAM if not just power down and the configuration will be wiped. If it has been saved you will have to do the recovery procedure.

0 Helpful
Customers Also Viewed These Support Documents