430
Chapter 11
Access Policies
It is important to remember the login command or the auxiliary port won't
prompt for authentication.
Console Password
To set the console password, use the command line console 0. However,
notice that when we tried to type line console 0 ? from the aux line con-
figuration, we got an error. You can still type line console 0 and it will
be accepted, but the help screens don't work from that prompt. We typed
exit
to get back one level:
Router(config-line)#line console ?
% Unrecognized command
Router(config-line)#exit
Router(config)#line console ?
<0-0> First Line number
Router(config)#line console 0
Router(config-line)#login
Router(config-line)#password todd1
Because there is only one console port, we can choose only line console 0.
Telnet Password
To set the usermode password for Telnet access into the router, use the line
vty
command. Routers that are not running the Enterprise edition of the
Cisco IOS default to five VTY lines, 0 through 4. However, if you have the
Enterprise edition, you will have significantly more. The routers we're using
for this book have 198 (0197). The best way to find out how many lines you
have is to use the question mark:
Router(config-line)#line vty 0 ?
<1-197>Last Line Number
<cr>
Router(config-line)#line vty 0 197
Router(config-line)#login
Router(config-line)#password todd2
If you try to telnet into a router that does not have a VTY password set,
you will receive an error stating that the connection is refused because the
Copyright ©2000 SYBEX , Inc., Alameda, CA
www.sybex.com