System information

ManualsBrandsDestination Audio ManualsComputer equipmentCS500C

481

482

483

484

485

486

487

488

489

490

Troubleshooting Security Implementations 24-495

Password-Recovery Procedure: IGS Running Software Prior to Software Release 9.1

To enable password checking at login, use the login line conﬁguration command:

Syntax Description:

• local—(Optional) Selects local password checking. Authentication is based on the

username speciﬁed with the username global conﬁguration command.

• tacacs—(Optional) Selects the TACACS-style user ID and password-checking

mechanism.

Examples:

The following example sets the password letmein on virtual terminal line 4:

line vty 4

password letmein

Syntax:

To specify a password on a line, use the password line conﬁguration command:

password password

Syntax Description:

• password—Character string that speciﬁes the line password. The ﬁrst character cannot

be a number. The string can contain any alphanumeric characters, including spaces,

up to 80 characters. You cannot specify password in the format

number-space-anything. The space after the number causes problems. For example,

hello 21 is a legal password, but 21 hello is not. The password checking is case

sensitive. For example, the password Secret is different from the password secret.

When an exec process is started on a line with password protection, the exec prompts

for the password. If the user enters the correct password, the exec prints its normal

privileged prompt. The user can try three times to enter a password before the exec

exits and returns the terminal to the idle state.

Example:

The following example removes the password from virtual terminal lines 1 to 4:

line vty 1 4

no password

Step 13 Enter the write memory privileged exec command to write the conﬁguration changes

into stored memory. Proceed to Step 16.

Step 14 If your password is cleartext (is not encrypted), enter the show conﬁguration privileged

exec command.

Step 15 If you have lost the enable password, locate the enable-password global conﬁguration

command entry in the conﬁguration and record the password.

If you have lost the login password, ﬁnd the conﬁguration entries for the console line and

record the password indicated by the password line conﬁguration command. Do not

make conﬁguration changes or use the write memory command at this time.

Step 16 Power down the router.

Step 17 Return the hardware conﬁguration register DIP switches located on the back panel of the

router to their original settings (the settings you noted in Step 2).

Step 18 Power up the router. Use your new or recovered password to gain access to the router.