09-18-2002 03:47 AM - edited 02-20-2020 10:15 PM
Hi togehter,
how can I change the default ssh/telnet username "pix" to another.
The passwd change is no problem, but i cannot find any cmd to change the default username "pix" to another.
any ideas ??
sascha
09-18-2002 08:19 AM
I believe you can use
user "name here - no quotes" password "password here"
It will not replace the "pix" user / password, but add another user. You may also need to change the authroization to "Local"
Good Luck
Scott
09-18-2002 03:00 PM
I use an external autentication radius server (IAS Microsoft) to ssh logon and I have to my external account in ssh to log in
09-18-2002 03:07 PM
You can use internal username/password authentication - see below:
Good luck!
-- Eugene
-----------------------------------------------
PIX(config)# help username
USAGE:
username
[privilege
username
[no|show} username {
clear username
DESCRIPTION:
username Configure user authentication local database
SYNTAX:
encrypted Indicate the
PIX(config)#
09-18-2002 11:21 PM
Hi Eugene,
that sounds fine, but does not work for ssh. :-(
ffmlog1:ksh 159 net>ssh -l pix 194.8.95.38
pix@194.8.95.38's password:
Type help or '?' for a list of available commands.
yfr-15kwe1>
yfr-15kwe1> ena
Password: *******
yfr-15kwe1# conf t
yfr-15kwe1(config)# username sthon password test
yfr-15kwe1# show username sthon
username sthon password VSkgrAjzs/g8UQqB encrypted privilege 2
and now try to connect with the new user "sthon":
ffmlog1:ksh 1683 net>ssh -l sthon 194.8.95.38
sthon@194.8.95.38's password:
Permission denied.
some more ideas ?
sthon
09-19-2002 10:29 AM
It works for me. See below:
======================================================
[root@slack81 root]# ssh -l eenest -c des 10.1.1.1
Warning: use of DES is strongly discouraged due to cryptographic weaknesses
eenest@10.1.1.1's password:
Type help or '?' for a list of available commands.
PIX>
PIX> ena
Password: *********
PIX# sho username
username eenest password *********** encrypted privilege 2
PIX#
PIX# sho ver
Cisco PIX Firewall Version 6.2(2)
Cisco PIX Device Manager Version 2.0(2)
Compiled on Fri 07-Jun-02 17:49 by morlee
PIX up 28 days 1 hour
Hardware: PIX-515, 32 MB RAM, CPU Pentium 200 MHz
==================================
Probably there's some other problem.
In reality - the output you sent me is meaningless.
Can you send the debug output?
-- Eugene
09-19-2002 10:03 PM
Hi Eugene,
which debug do you wanna see ?
I cannot fine some authentication debug on the 501 :-(
some more infos: I use PIX 501 with 6.2(1)
yfr-15kwe1# sh ver
Cisco PIX Firewall Version 6.2(1)
Cisco PIX Device Manager Version 2.0(1)
Compiled on Wed 17-Apr-02 21:18 by morlee
yfr-15kwe1 up 1 day 21 hours
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
regards
sascha
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide