Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
23993
Views
0
Helpful
3
Replies

Disable Console port

fnnnoccisco
Level 1
Level 1

‎05-09-2010 05:21 AM - edited ‎02-21-2020 03:57 AM

Hi

I need to completely disable consol port on all Cisco products for some security reason


can anyone tell me how can i done this ?

1 person had this problem
0 Helpful
3 Replies 3

Panos Kampanakis
Cisco Employee
Cisco Employee

‎05-10-2010 07:25 AM

The console/aux port is very important for the routers in order to do password recovery etc.

You can disable it by doing:

Router(config)# line aux 0
Router(config-line)# no exec

You can also set a password for it if you don't want to disable i:

Router(config)# line aux 0
Router(config-line)# password xxx
Router(config-line)# login
Router(config-line)# end

I hope it helps.

PK

0 Helpful

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎05-13-2010 02:52 AM 

Hi
I need to completely disable consol port on all Cisco products for some security reason

can anyone tell me how can i done this ?

As suggested the no exec command disables all EXEC sessions to the router via that port.If you issue this command on the console port of the router because it will disallow all exec sessions to the router's console port.

Hope to Help !!

Ganesh.H

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to Ganesh Hariharan

‎06-06-2010 03:12 PM

Mahdi

Your original post said that you need to do this for ALL Cisco equipment. Since you do not indicate what Cisco equipment that you have this is a very broad set of equipment. I doubt that there is any answer that will work for ALL Cisco equipment. For IOS based equipment there is a single solution that works. If your requirement is to disable the console port then no exec is the way to disable it.

I would join with PK in asking you to think carefully before you do this. Access to the console port is an important part of the troubleshooting process for some problems. I have a customer who has a pair of routers that recently went through a power failure. When power was restored the routers did not come back on line. The switches to which they were connected indicated that the switch ports were not connected, so there was some issue on the router side. The only access that we had to the routers was through the console port. If we had not had console access I am not sure how we would have resolved this problem. So I suggest that you weigh carefully whatever requirement leads you to disable all console access againt the loss of a potentially valuable troubleshooting tool.

HTH

Rick

HTH

Rick
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card