Login configuration & concepts Flashcards
consol, telnet, SSH, all types
How to configure Console Login ?
> Line con 0 - 0 is the amount of connection available
password 0 - no encryption
password 7 - password encrypted
login - enable password to be asked for
How to configure Telnet Login
Telnet = Remote login, not encrypted, but TCP
> line vty 0 - 15 - 0 is the amount of connection available
password - same a console
login - is set by default
Above is not encrypted - message can be captured by wire shark and read
After configuring Consol and Telent.-
What does the below config do ?
> No Login
> no login
- this will remove the password being asked, goes straight into enable mode
Enable = Setting password on the privilage exec mode
> enable password ___
- this is not encrypted at all. Also in clear text in config file
Enable secret is ?
difference is it hides the password from the running config. Take priority over enable password if already configured.
how to configure enable secret ?
> enable secret _____
- Take priority over existing enable password if set
This is MD5# = type 7 strength - hacking is required to break it
What is SSH stand for and used for ?
SSH = secure shell - Remote login that is encrypted
How to configure SSH ?
with explanation of each part
- > host name ____ - this is needed
- > ip domain-name ___ - these two are needed for the self generated certificate
- > crypto key generate RSA 1024
- generate encrypted keys - Public & Private Key
- Sym 64, 128, 256 bits. Default is sugeested 512 this is asymmetric key set - > iP ssh version 2 - enable SSH & Key
- > Username ____ password ______
- Create Local user account & password
or. > username ____ secret ________
- same as enable secret hides password & MD5 hashing
- Allow telnet or ssh or both. ssh only disables telnet
> Line vty 0 - 15
> transport input ___ all or ssh,telnet
- Allow telnet or ssh or both. ssh only disables telnet
- Login
> login Local or Tacacs
- username & password from local database
How to configure SSH ?
whole process in order - with no explanation
whole process in order
1 - Hostname 2 - ip Domain-name 3 - crypto key generate RSA [512] 1024 4 - ip ssh version 2 5 - username \_\_\_ password/secret \_\_\_\_\_ 6 - line vty 0-15 transport input all or ssh 7 - Login Local
What is - Terminal timeout ?
How to configure it ?
Terminal timeout = how long before session and idle kick out
> Line con 0
Line Vty 0 - 15 - For both of these
> exec-timeout 5 10 - 5 is the min, 10 is the seconds
What is Logging synchronous ?
How to configure it ?
Logging synchronous = when typing command and screen message disrupts, this setting makes sure the command is displayed on a fresh line
> Line con 0
Line Vty 0 - 15 - For both of these
> Logging synchronous
What is Service password-encryption ?
How to configure it ?
Service password-encryption = This just hides all password on running config on device - This can be easily decrypted on websites(ifm)
from global config
> Service password-encryption
This can be easily decrypted on websites(ifm)
What are the encryption strengths ?
Enable secret is =
This is MD5# = type 7 strength - hacking is required to break it
Enable password & service password encrypt =
This just hides all password on running config