About Cat 3550 enable secret passworld
Hello, everyone!
this day, I tried to change of password about my Catalyst 3550 L2/L3 Swithes.
but, I find out a problem.
next is process my change of enable password.
1. conf t
2. enable password xxx
3. ^z
4. conf t
5. enable secret xxx
6. ^Z
the end
I tried to enable password after disable.
but, I can't enter with changed password.
I don't know why can't enter.
Do you know this ?
and how to setting enable secret pasword ?
I would like know how to set-up enable secret password on cataylst 3550 switches.
thank you.
I will wait your answer.
The enable secret will override any enable password that may be configured . Use one or the other and delete the one you aren't using . The enable secret is the preferred password due to md5 encryption and which can't be cracked by those nice little cisco password breakers they out everywhere .
CONF T
no enable password
enable secret XXXXX
Similar Messages
-
How to find out when 'enable secret' and username secret' was set/changed
Hi,
I was wondering if it is possible to find out when 'enable secret' and username secret' was set or changed last time on an IOS based machine.
Is there any show command or kind of timestamp or MIB which can be read out?
tnx RalfProbably your syslog server would give you that info.
-
About:config Javascript Enable/Disable not working correctly
It used to be that the About:Config Javascript Enable/Disable toggle was an all or nothing swtich. If you turned it off, it was turned off for all of Firefox, including and most importantly active loaded pages with interactive content. It was an absolute need for defense against rouge pages that would do things like trap the close page function and open up many more pages when you closed a page. Other pages would attempt to download code repeatedly and the only way to truly "escape" those pages was to open up a tab with About:Config and toggle the Javascript Enabled option. This is still there, but the behavior has changed in Version 29. It no longer turns off Javascript for all pages loaded or future loaded, only future loaded ones have it turned off. This is a show stopper. Get it back to disabling for all loaded pages or we won't use Firefox anymore.
The problem of being trapped in an onbeforeclose event handler was tackled directly. You should not encounter that problem any more as of a few versions ago. (And/or you could use my Escape bookmarklet: [http://dev.jeffersonscher.com/bookmarklets.html#escape])
I'm not familiar with the other issue of sites trying to download code repeatedly.
To give feature suggestions, you can use this site: https://input.mozilla.org/feedback
To file a more detailed request for enhancement you can use Bugzilla: https://bugzilla.mozilla.org/ -
Line console password vs privilege mode enable secret
Hi all,
Below is my running config ->
line con 0
exec-timeout 0 0
privilege level 15
password cisco
logging synchronous
login
q1) how come every time i will enter privilege mode once i enter the console password ? can I choose to enter normal user mode instead ? is it via setting the privilege level ?
q2) I understand that for enable privilege mode, i can set secret/encrypted password for the enabling.
R1#config t
R1(config)#enable secret cisco
Where does the encryption take place ? is it only to just md5 the password text in the configuration file only ? if i were to sniff the password over the network, i will still see clear text "cisco" ?
q3) Why can't i do so (setting secret/encrypted) password for line (vty,con etc) login ?
q4) for q3, after google, i realize i need to issue service password-Encryption
a) does this command "encrypt" again my current enable secret password ? -- i think its no cause i see no changes in show run
b) why do we have to issue this command to encrypt my line,vty etc password ? why can't we use the "secret" command ?
c) what the different between this "service password-Encryption" and "secret" ? why do we need to have both ?
q5) is all the service password-Encryption, enable secret etc, just basically hashing or encrypting the actual text password in the config file. is there anyway of encryption over the network ?
Thanks,
Nooba) why vty, console line cannot have hashed password like enable secret ? -- the only way to use secret is to have login local and create local username with secret password
Because they can't, its as simple as that really.
Like you said, the only way to protect the password using an MD5 hash is to create a username and password and ensure you use the secret command like:
username admin secret password
b) is all the service password-Encryption, enable secret etc, just basically hashing or encrypting the actual text password in the config file. is there anyway of encryption over the network ?
Its just using an MD5 hash
Where its encrypted or not over the network will depend on whether you use Telnet or SSH to connect to the switch.
Telnet is plain text so even using an MD5 password will still be visible if someone were to packet capture your telnet session.
SSH in encrypted so use this whenever possible. -
Cisco AAA and Free Radius enable secret failure
Hi,
I am currently testing aaa authentication with free radius.
I can authenticate users through the radius server, however i cannot authenticate the enable secret.
Here is the router configurations
aaa new-model
aaa authentication login default group radius local
aaa authentication login localauth local
aaa authentication ppp default if-needed group radius local
aaa authentication enable default group radius enable
aaa authorization exec default group radius local
aaa authorization network default group radius local
aaa accounting delay-start
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
radius-server host 192.168.0.135 auth-port 1812 acct-port 1813 key cisco
I have created a user for the enable secret as such:
$enable15$ Auth-Type := local
Service-Type = NAS-Prompt-User
The router cannot authenticate when logging for priviliged mode. I cannot find any log on the radius server as well.
PLease help.It should be $enab15$ as the user that IOS sends to the radius server.
Sent from Cisco Technical Support iPhone App -
Stack configuration in Cat 3550
Hi,
I have connected two cat 3550 in point-to-point stack connection. I want to know the software configuration part of this. Will there be any master slave mode? how many management IPs will be there for this stack? will all the 48 interfaces will appear in a single CLI?
Thanks & Regards
RRHi,
Please paste a show version from your switch.
The link that I pasted is from the lastest IOS's switch configuration guide 12.2(25)SEC release in july 2005.
I still believe that you can set up a switch cluster on 3550.
The Point to point stacking that you have setup is a gigastack configuration, which will give you 1000 MBPS full duplex backplane connectivity with stack switch switches. Still you need to set up switches as a switch cluster so that you cna manage them using a single IP.
Switch Clustering technology allows customers to manage a stack of devices within a wiring closet or a broadly dispersed set of devices across a campus as a single IP entity. Switch Clustering technology uses standard TCP/IP packets to distribute and collect management information for all switches in the cluster. Switch Clustering supports a broad range of physical interconnections, including the GigaStack GBIC.
regards,
-amit singh -
ACS Appliance 1112 - Authentication Without Enable Secret
Hello Everybody
I have a ACS appliance 1112 to authenticate users by TACACS+ with Active Directory.
The users can access the privileged mode on network devices just with the user AD without typing a enbale secret but after a restart on appliance now the users are asked to typing a enable secret to access the privileged mode.
Is necessary change something on Network Devices or maybe a configuration on ACS ?
ThanksPlease go to the group that belongs to the user in question and make sure we have shell exec checked with priv 15
Bring users/groups in at level 15
1. Go to user or group setup in ACS
2. Drop down to "TACACS+ Settings"
3. Place a check in "Shell (Exec)"
4. Place a check in "Privilege level" and enter "15" in the adjacent field
Also check passed authenticate logs and make sure that user are mapped to the right group of acs.
Regards,
~JG
Do rate helpful posts -
Hello Experts!
I have some very urgent queries. I would appreciate if you could please update me with those. My queries are as follows:
1. How can I access the gap in functionality of 4.7 to ECC 6.0 ?
2.what are existing user exits/modifications of CATs timesheet and how can we determine their portability to the web enabled version?
3. where can I learn about regression test scripts for timesheet functionality? or if you could give me some idea about it.
Thank you all in advance!
Regards,
MamtaHello Experts!
I have some very urgent queries. I would appreciate if you could please update me with those. My queries are as follows:
1. How can I access the gap in functionality of 4.7 to ECC 6.0 ?
2.what are existing user exits/modifications of CATs timesheet and how can we determine their portability to the web enabled version?
3. where can I learn about regression test scripts for timesheet functionality? or if you could give me some idea about it.
Thank you all in advance!
Regards,
Mamta -
Hi gurus,
I am having a problem with the CATS approval workflow.When clicking on the attachment of the workflow we are getting a short dump.
Short text
Program error: ASSIGN with length 0 in program "SAPLSWOT".
What happened?
Error in the ABAP Application Program
The current ABAP program "SAPLSWOT" had to be terminated because it has
come across a statement that unfortunately cannot be executed.
Tried to create a field with length 0. This is not
possible.
What can you do?
Note down which actions and inputs caused the error.
To process the problem further, contact you SAP system
administrator.
Using Transaction ST22 for ABAP Dump Analysis, you can look
at and manage termination messages, and you can also
keep them for a long time.
Error analysis
In an ASSIGN statement in the program "SAPLSWOT" a field symbol with
length 0 should have been created. However, this is not possible.
length 0.
This is not possible.
How to correct the error
If the error occurred in your own ABAP program or in an SAP
program you modified, try to remove the error.
If the error occures in a non-modified SAP program, you may be able to
find an interim solution in an SAP Note.
If you have access to SAP Notes, carry out a search with the following
keywords:
"ASSIGN_LENGTH_0" " "
"SAPLSWOT" or "LSWOTU02"
"SWO_DIALOG_OBJECT_KEY_EDIT"
If you cannot solve the problem yourself and want to send an error
notification to SAP, include the following information:
1. The description of the current problem (short dump)
To save the description, choose "System->List->Save->Local File
(Unconverted)".
2. Corresponding system log
Display the system log by calling transaction SM21.
Restrict the time interval to 10 minutes before and five minutes
after the short dump. Then choose "System->List->Save->Local File
(Unconverted)".
3. If the problem occurs in a problem of your own or a modified SAP
program: The source code of the program
In the editor, choose "Utilities->More
Utilities->Upload/Download->Download".
4. Details about the conditions under which the error occurred or which
actions and input led to the error.
System environment
SAP-Release 700
Application server... "mednswn014"
Network address...... "192.168.1.114"
Operating system..... "Windows NT"
Release.............. "5.2"
Hardware type........ "4x AMD64 Level"
Character length.... 16 Bits
Pointer length....... 64 Bits
Work process number.. 0
Shortdump setting.... "full"
Database server... "MEDNSWN014"
Database type..... "MSSQL"
Database name..... "ECD"
Database user ID.. "ecd"
Char.set.... "C"
SAP kernel....... 700
created (date)... "Jan 29 2007 00:36:16"
create on........ "NT 5.2 3790 Service Pack 1 x86 MS VC++ 14.00"
Database version. "SQL_Server_8.00 "
Patch level. 95
Patch text.. " "
Database............. "MSSQL 7.00.699 or higher, MSSQL 8.00.194"
SAP database version. 700
Operating system..... "Windows NT 5.0, Windows NT 5.1, Windows NT 5.2"
Memory consumption
Roll.... 16192
EM...... 4189840
Heap.... 0
Page.... 16384
MM Used. 1700672
MM Free. 2486544
User and Transaction
Client.............. 111
User................ "T_MGR_2"
Language key........ "E"
Transaction......... "SWO_ASYNC "
Program............. "SAPLSWOT"
Screen.............. "SAPMSSY0 1000"
Screen line......... 6
Information on where terminated
Termination occurred in the ABAP program "SAPLSWOT" - in
"SWO_DIALOG_OBJECT_KEY_EDIT".
The main program was "SWO_CALL_METHOD_ASYNC ".
In the source code you have the termination point in line 68
of the (Include) program "LSWOTU02".
we are using the workflow
TS20000460.
It's very urgent.Hi experts,
I had the same problem with standard object BUS2028 (Material Inventory).
I re-generated the object in development system in SWO1 transaction and the problem got solved (in development system). But the issue is that the client has MANY systems, and I dont think I will be able to re-generate in all systems, specially in productive system....
I was not asked for any transport request when re-generating.... How can I get the "re-generation" moved to other systems? Is there any way to include a standard business object in a transport request? or howelse?
I've also been looking for some OSS note for this but didn't find anything....
Hope you can help me!
Thanks,
Daniela -
A couple things about itunes match. First, why does it take up so much space before you download any songs when you enable it on an iphone? Also, why does it not give back that space when you disable itunes match? It would also be very appreciated if Apple would add a confirmation check to itunes match in settings when you disable it - the same way they do when you enable it. More then once I have disabled itunes match when I meant to disable show all music, and it is a pain to wait for itunes match to go through the whole process of enabling itself again.
It is not a bug. However you may leave your polite feedback for Apple at this page: http://www.apple.com/feedback/itunesapp.html
-
Re: About radio button enable by using selection screen
Hi,
this is suresh babu.i am doing one report on Competency table. About details of the report..
there are four text feilds and 3 radio buttons in main screen.if we select one of the radio button then i want screen to required table..
text feild:
Division:----
personnal area:----
employee group:----
Year:----
select the type of report you wiish to execute.
radio button1: low competency
radio button2: low KPI
radio button3: low competeny and KPI
*this is my main screen of the report.my requirement is when we click any of the radio buttn i have to go for the required table in my program.
so i want how to enable radio buton and how to generate New T-code in ABAP.HI create program inwhich u hav only 3 radio buttons as parameters
parameters : p1 radiobutton group rg1,
p2 radiobutton group rg1,
p3 radiobutton group rg1.
if p1 = 'X'.
submit Zprogram1 VIA SELECTION-SCREEN .
***Zprogram1 is program to b called for radiobutton 1.
elseif p2 = 'X'.
submit Zprogram2 VIA SELECTION-SCREEN
else if P3 = 'X'.
submit Zprogram3 VIA SELECTION-SCREEN
endif.
goto SE93..
and create new tcode and assign this program name der... -
I am a newbie, having just recently acquired my CCNA. I have a new 2811 that I am configuring and the login process is not working as I am used to seeing it work. During the initial setup of the router, I followed the instructions in the banner that indicated I should configure a user and password using the following command:
username router privilege 15 secret 5 password
The privilege keyword is not something I have seen before. I have since researched it and understand it but I think this command is getting in the way of the "standard" login procedure I am used to seeing; in other words, entering a console or vty password followed by using the "enable" command and entering the enable password to get into privileged mode. As it stands now, I can telnet to the router, enter the username and password and get right into privileged mode. I can't decide if this is a security issue or not. The password that is associated with this login method is encrypted just like the enable password I am used to so it seems as though it should be OK. I also configured vty and console passwords on this router but I am now wondering if they are necessary. Will this "privileged" command suffice for both vty and console access? Can anybody shed any light on this for me?
Thank you.
Dan HarrisDan, if you enter the privilege 15 command this will take you directly to the enabled mode. This is the 'expected' behavior. If you don't want this to happen, change it to:
no username router privilege 15 secret 5 password
username router secret 5 password
Making CLI users login 'directly' into the enable/privileged mode is considered 'less' secure. But that is relative to your security policy and usability requirements. However you will required a privilege 15 user if you plan to user the web-interface to manage the box.
Regards
Farrukh -
Javascript not working in Firefox 32.0 - about:config says enabled - but web pages say different
For example maps not loading on hotel pages. Various other errors appear now on web pages saying ' You must have JavaScript enabled'. I'm not a computer person, but I can see from about:config says its enabled -
javascript.enabled;true
Any other suggestions???You can open the Web Console (Firefox/Tools > Web Developer).
Check on the Network tab if any content is blocked and has a file size 0 (zero).
*https://developer.mozilla.org/Tools/Web_Console
You can try these steps in case of issues with web pages:
You can reload web page(s) and bypass the cache to refresh possibly outdated or corrupted files.
*Hold down the Shift key and left-click the Reload button
*Press "Ctrl + F5" or press "Ctrl + Shift + R" (Windows,Linux)
*Press "Command + Shift + R" (Mac)
Clear the cache and remove cookies only from websites that cause problems.
"Clear the Cache":
*Firefox > Preferences > Advanced > Network > Cached Web Content: "Clear Now"
"Remove Cookies" from sites causing problems:
*Firefox > Preferences > Privacy > "Use custom settings for history" > Cookies: "Show Cookies"
Start Firefox in <u>[[Safe Mode|Safe Mode]]</u> to check if one of the extensions (Firefox/Tools > Add-ons > Extensions) or if hardware acceleration is causing the problem.
*Switch to the DEFAULT theme: Firefox/Tools > Add-ons > Appearance
*Do NOT click the Reset button on the Safe Mode start window
*https://support.mozilla.org/kb/Safe+Mode
*https://support.mozilla.org/kb/Troubleshooting+extensions+and+themes -
< MODERATOR: All points have been UNASSIGNED and the message locked. Please do not share email addresses, documents, or links to copyrighted or company confidential information on these forums. >
Can you please explain me everything related to CATS.
From the start like
1)Before making the AS_IS doc what all information i should know
2) how to make an AS-IS doc for CATS
3) what type of questions i have to cover in AS-IS Doc for CATS
4) what does sap implementation concile means
5) Configuration of CATS
6) what all information i have to consider when i am implementation cats
can anybody tell me everything about CATSHi,
I am working on the CATS.
Do you got the answer for your questions?
I have some docs on this.
yogesh.deshmukh81 at gmail -
Why can't I receive email about my reset my secretly answers
Whenever I try to buy any apps or music it wants me to verify for security purposes but I don't remember the answers. It is supposed to send it to your email but I never get it.
You have to use one of these methods
From a Kappy post
The Three Best Alternatives for Security Questions and Rescue Mail
1. Use Apple's Express Lane.
Go to https://expresslane.apple.com ; click 'See all products and services' at the
bottom of the page. In the next page click 'More Products and Services, then
'Apple ID'. In the next page select 'Other Apple ID Topics' then 'Forgotten Apple
ID security questions' and click 'Continue'. Please be patient waiting for the return
phone call. It will come in time depending on how heavily the servers are being hit.
2. Call Apple Support in your country: Customer Service: Contact Apple support.
3. Rescue email address and how to reset Apple ID security questions.
A substitute for using the security questions is to use 2-step verification:
Two-step verification FAQ Get answers to frequently asked questions about two-step verification for Apple ID.
Maybe you are looking for
-
Please help
-
Dear All, I'm New To Process Industry,piz help me what are important thinks I need understand,? Important TABLES IN process Industry?any study material have in the sense share me. process flow thanks for advance
-
HTTPURLConnection response with multiple Set-Cookie Header key
I set up a connection to a server and it gives me a response. This response has two header keys but when I loop through like so many reference and how-to sites tell me I only get one and its the last value. This is some code that I'm using: for (int
-
Setting up Lightroom 4.3 Publishing Services
I am having a problem setting up Lightroom 4.3 Publishing Services. Each time I click "OK I'll Authorise button in Flickr it goes to a blank screen with no completion of the process. After many attempts over the last couple of days, this morning I
-
I have a itouch and it ended up getting locked. I ave tried to connect to iTunes and it does not recognize it. Tried the 2 help options and they did not work either (turn off and hold power button, connect to itunes). No sure if it makes a differen