4
Basic Software Configuration Using the Cisco IOS Command-Line Interface
OL-5593-01
How to Perform a Basic Software Configuration Using the Cisco IOS CLI
What to Do Next
Proceed to the “Configuring the Enable and Enable Secret Passwords” section on page 4.
Configuring the Enable and Enable Secret Passwords
To provide an additional layer of security, particularly for passwords that cross the network or are stored
on a TFTP server, you can use either the enable password command or enable secret command. Both
commands accomplish the same thing—they allow you to establish an encrypted password that users
must enter to access privileged EXEC (enable) mode.
We recommend that you use the enable secret command because it uses an improved encryption
algorithm. Use the enable password command only if you boot an older image of the Cisco IOS
software or if you boot older boot ROMs that do not recognize the enable secret command.
For more information, see the “Configuring Passwords and Privileges” chapter in the Cisco IOS Security
Configuration Guide. Also see the
Improving Security on Cisco Routers tech note.
Restrictions
If you configure the enable secret command, it takes precedence over the enable password command;
the two commands cannot be in effect simultaneously.
SUMMARY STEPS
1.
enable
2.
configure terminal
3.
enable password password
4.
enable secret password
5.
end
6.
enable
7.
end
DETAILED STEPS
Command or Action Purpose
Step 1
enable
Example:
Router> enable
Enables privileged EXEC mode.
•
Enter your password if prompted.
Step 2
configure terminal
Example:
Router# configure terminal
Enters global configuration mode.
To Next Page
Loading...
Need help?
General
