Home > IT Answers > Networking > Cisco Encryption
Jd008
5 pts.
 Cisco Encryption
Cisco, Cisco Routers, Cisco switches, Console port, Network Encryption, Port Encryption, VTY Port
Is there a way to encrypt console port and vty port on a cisco switch/router using type 5 password encryption?

Software/Hardware used:
ASKED: December 12, 2008  4:58 PM
UPDATED: May 29, 2009  6:03 PM
RELATED QUESTIONS
Answer Wiki:
The traffic to/from the device will not be encrypted unless SSH is enabled. The password should be able to be encrypted in the configuration. Use the command <b>service password-encryption</b> at the beginning of your configuration. In the IT trenches? So am I - read my <a href="http://itknowledgeexchange.techtarget.com/it-trenches">IT-Trenches blog</a>
Last Wiki Answer Submitted:  May 27, 2009  7:05 pm  by  Labnuke99   32,645 pts.
All Answer Wiki Contributors:  Labnuke99   32,645 pts.
To see all answers submitted to the Answer Wiki: View Answer History.


RSS - Discussions Help
Discuss This Question:
_ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _ _

 

As Labnuke99 says, the traffic to/from the vty is not encrypted unless you use SSH.

However the encryption of the passwords for the con, aux and vty ports is not type 5, which was the original question. The answer is no, you can not use type 5, only the enable secret uses type 5. The con, aux, and vty only use type 7 when the global service password encryption command is used.

BlankReg
 12,215 pts.
 

If you would like to use type 5 then use username / password combination

username bob secret b0bzs3cr3t

line vty 0 4
login local
line con 0
login local

the password for each username will be type 5

:)

Jfernatt
 605 pts.
 

Hi Jfernatt – I usually work on old versions, so I had forgotten that that was introduced. Good Call.

I think it came in from 12.3 onwards, prior to that only the enable secret used type 5.

BlankReg
 12,215 pts.