enable password myPassword
2/- Set enable OR secret password: Protect Privilege Exec Mode
enable secret mysecretpass
3/- Set Console password(console): When login via console, required console password
enable
configur terminal
line console 0
password consolepass
login
4/- Set username password(console): When login via console, required username password
username user1 secret user1pass
line console 0
login local
5/- Set username password(console): When login via console, required username password
(cmd: privilege is login without prilege-mode)
username user1 privilege 15 secret user1pass
line console 0
login local
6/- Set Telnet password(telnet): When login via telnet remote access, required telnet password
Ex: IP router: 192.168.2.1/24
line vty 0 4
password telnetpass
login
7/- Set username password(telnet): When login via telnet remote access, required username password
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
username user1 secret user1pass
line vty 0 4
login local
enable secret secretpass
8/- Set username password(telnet): When login via telnet remote access, required username password
(cmd: privilege is login withou privilege-mode)
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
username user1 privilege 15 secret user1pass
line vty 0 4
login local
enable secret secretpass
---------------------------------
4) Set SSH remote to Router or Switch (Secure SHell, 22/tcp) password:
Ex: R1-> IP: 192.168.2.1
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
hostname R1
enable secret secretpass
username user1 secret user1pass
ip domain-name www.cambodia.com
crypto key generate rsa
1024
ip ssh version 2
line vty 0 4
login local
transport input ssh
(remote PC> ssh -l user1 192.168.2.1)
----------------------------------------------
How to ssh remote access from Cisco Router1 to Cisco Router2
# ssh -v 2 -l [username1] [ipofrouter2]
# ssh -l [username1] [ipofrouter2]
---------------------------------
5) Set banner to inform when login:
banner motd "Access for authorized users only. Please enter your username and password." : option 1
banner motd #Access for authorized users only. Please enter your username and password.# : option 2
banner motd ^Access for authorized users only. Please enter your username and password.^ : option 3
+ to encrypt password using with keyword password:
service password-encryption
+ to abort when type wrong command input.
no ip domain-lookup
************** Lesson *************
1/- Set enable OR secret password: Protect Privilege Exec Mode
enable password myPassword
2/- Set enable OR secret password: Protect Privilege Exec Mode
enable secret mysecretpass
3/- Set Console password(console): When login via console, required console password
line console 0
password consolepass
login
4/- Set username password(console): When login via console, required username password (**************************************************)
username user1 secret user1pass
username user2 secret user2pass
line console 0
login local
5/- Set username password(console): When login via console, required username password
(cmd: privilege is login without prilege-mode)
username user1 privilege 15 secret user1pass
line console 0
login local
6/- Set Telnet password(telnet): When login via telnet remote access, required telnet password
Ex: IP router: 192.168.2.1/24
line vty 0 4
password telnetpass
login
7/- Set username password(telnet): When login via telnet remote access, required username password
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
username user1 secret user1pass
line vty 0 4
login local
enable secret secretpass
8/- Set username password(telnet): When login via telnet remote access, required username password
(cmd: privilege is login withou privilege-mode)
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
username user1 privilege 15 secret user1pass
line vty 0 4
login local
enable secret secretpass
---------------------------------
4) Set SSH remote to Router or Switch (Secure SHell, 22/tcp) password:
Ex: R1-> IP: 192.168.2.1
interface fa0/0
ip address 192.168.2.1 255.255.255.0
no shutdown
exit
hostname R1
username mengheang secret Passw0rd
interface fa0/0
username user2 secret user2pass
ip domain-name www.cambodia.com
crypto key generate rsa
1024
ip ssh version 2
line vty 0 4
login local
transport input ssh
exit
enable secret secretpass ***** put enable secret for using enable config *****
(remote PC> ssh -l mengheang 192.168.2.1)
# ssh -v 2 -l [username1] [ipofrouter2]
----------------------------------------------
How to ssh remote access from Cisco Router1 to Cisco Router2
# ssh -v 2 -l [username1] [ipofrouter2]
# ssh -l [username1] [ipofrouter2]
---------------------------------
5) Set banner to inform when login:
banner motd "Access for authorized users only. Please enter your username and password." : option 1
banner motd #Access for authorized users only. Please enter your username and password.# : option 2
banner motd ^Access for authorized users only. Please enter your username and password.^ : option 3
+ to encrypt password using with keyword password:
service password-encryption
+ to abort when type wrong command input.
no ip domain-lookup
************** Exercise ***************
###SET PASSWORD ON ROUTER HQ###
1) Set secret password (secretpwd$) : Protect Privilege Exec Mode
???
enable secrete secretpwd$
----------------------------
2) Set Console password (consolepwd$) : When login via console, required console password
???
line console 0
password consolepwd$
login
----------------------
3) Set Telnet password (telnetpwd$) : When login via telnet remote access, required telnet password
???
line vty 0
password telnetpwd$
login
################################################
###SET PASSWORD ON ROUTER KCM###
--------------------------------
4) Enable SSH version 2: by create
Username: john
Password: johnpwd$
And set secret password (secretpwd$)
???
enable secret secretpass
username john secret johnpwd$
ip domain-name www.cambodia.com
crypto key generate rsa
1024
ip ssh version 2
line vty 0 4
login local
transport input ssh
EmoticonEmoticon