Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations wOOdy-Soft on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

Cisco 2950 encrypted password 1

Status
Not open for further replies.
adventrskr

adventrskr

Technical User
Apr 24, 2005
27
US
I have a cisco 2950 switch with vers 12.0 (14) IOS. I am attempting to create a user using the following format:

user gcoutin priv 15 password 7 pass$word

I have tried various methods but i get the error:

unable to encrypt pass$word

What is causing this? Other user accounts have been created. TIA

 
Sort by date Sort by votes
This looks good to me... Try adding this to the configuration:

service password-encryption


See if that helps.
 
Upvote 0 Downvote
Not sure but if you have service password encryption already on try putting the command in without the "7" in the statement .
 
Upvote 0 Downvote
I attempted to add the service pass-enc and i still get the same error, I know its got to be something simple, the config has added users b4...I even tried variations to the command and nothing. Ill keep plugging at it...thanks for the reply.
 
Upvote 0 Downvote
if you use "password 7" then the "hidden password" following this commands should be the output of the weakly encrypted password.

Say your original password is "pass$word"
then if you have "service password-encryption" enabled and you input the command "username user priv 15 password pass$word" and then sh run, you'll the following line:

"username user privilege 15 password 7 140713181F403D24362C"

"140713181F403D24362C" is the encrypted form of "pass$word" and of course it won't be the same everytime you enter the username command.

So what you have to do is either use:

username user privilege 15 password 7 140713181F403D24362C

or,

username user privilege 15 password pass$word

or...if your IOS support this, which I highly recommend,

username user privilege 15 secret pass$word

Using secret is more secure as it uses a non-reversible algorithm while the "password 7" is reversible and you can use the following URL to crack any "password 7" encrypted passwords.

 
Upvote 0 Downvote
thank you all for the assist, lambent you were spot on thanks. what it is, is that 12.0 you have to set service password-encryption and then type in the password without the 7 and then it will auto encrypt the password. Thanks again for the assist.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

B
  • Locked
  • Question
Cisco IP phone 7841 8851 unable to forward all to external number
Replies
0
Views
222
badwolf1686
B
pbxcomm
  • Locked
  • Question
CISCO VG450
Replies
1
Views
577
nt8d09
nt8d09
CPM86
  • Question
Cisco isr 4331 with IOS and sip busy fail over to 2nd sip number on pbx?
Replies
0
Views
359
CPM86
CPM86
Skip Rango
  • Locked
  • Question
how to backup cisco sg500-52p switch
Replies
1
Views
570
madwok
madwok
Jared R
  • Locked
  • Question
Cisco UC320W Paging Help
Replies
0
Views
550
Jared R
Jared R

Part and Inventory Search

Sponsor

Back
Top