Creating Secrets
This example generates a secret for the password rocket, and creates a secret for
privilege level 15.
1. Enable and configure the secret. The 0 keyword specifies that you are entering
an unencrypted secret.
host1(config)#enable secret level 15 0 rocket
2. Display the secret.
host1(config)#exit
host1#show secret
Current Password Settings
-------------------------
encryption encrypted
level type password/secret mode
----- ---------- -------------------- ----------
0
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15 5 (secret) bcA";+1aeJD8)/[1ZDP6 configured
You or users with high privilege levels can now use the encrypted password,
bcA";+1aeJD8)/[1ZDP6, with the password command.
Encrypting Passwords in Configuration File
You can also direct the system software to encrypt passwords saved in the
configuration file by using the service password-encryption command. This
command is useful to keep unauthorized individuals from viewing your password in
your configuration file. It is important to remember that this command uses a simple
cipher and is not intended to protect against serious analysis. You can tell if a string
is encrypted if it is preceded by an 8.
Commands and Guidelines
Use the following commands and guidelines to set passwords or secrets for the
privilege levels.
enable password
Setting Basic Password Parameters ■ 419
Chapter 7: Passwords and Security
To Next Page
Loading...