It is important to mention that encrypting the password only helps if the configuration file of the router is configured by an unauthorized party. However, even with password encryption enabled, it is still passed in the clear of a network wire between the user workstation and the router or switch. You should consider other means of encryption such as Secure Shell (SSH) if you have concerns about passwords being sniffed or captured over the network path.

If you use the same password for the enable password and enable secret commands, you receive an error message warning that this practice is not recommended, but the password is accepted. By using the same password, however, you undermine the additional security the enable secret command provides.

0 0

Post a comment