Switch Cisco : arrive directement en mode enable après s'être loggué

Recherche :

Mot : Pseudo : Filtrer
Bas de page
Auteur	Sujet : Switch Cisco : arrive directement en mode enable après s'être loggué

arnaudperfect

Bonjour à tous,

Je suis en train de configuré un switch cisco 2960, pour remplacer un autre switch qui a cramé chez mon client.
Je ne suis pas un expert réseau, donc je lute un peu.

Il y a un élément qu eje n'arrive pas à configuré. Je m'explique :

Sur le parc de switch, lors de la connexion en SSH, on entre le login et MDP. On arrive directement en mode enable après s'être loggué.

Code :

SW_CISCO#

Sur le switch que je configure, après login, je suis obligé d'entrer en mode privilégié et d'entrer le MDP de ce mode.
J'aimerai avoir le même comportement, c'est à dire d'entrer en mode privilégié (enable) directement après mon login, sans a avoir saisir le MDP enable.

Ci joint ma configuration :

Code :

SW_CISCO#sh run
Building configuration...
Current configuration : 16391 bytes
!
! Last configuration change at 02:27:40 UTC Mon Mar 1 1993 by admin
!
version 15.0
no service pad
service timestamps debug datetime msec
service timestamps log datetime msec
service password-encryption
!
hostname IPxx_2960_xxxx
!
boot-start-marker
boot-end-marker
!
enable secret 5 xxxxxxxxxxxxxxxxxxxxxx
!
username admin privilege 15 password 7 xxxxxxxxxxxxxxxxxxx
aaa new-model
!
!
aaa authentication login default local
!
!
!
!
!
!
aaa session-id common
clock timezone UTC 1 0
clock summer-time UTC recurring last Sun Mar 2:00 last Sun Oct 3:00
system mtu routing 1500
!
!
ip domain-name xxx.xxxxx
!
mls qos map policed-dscp 0 10 18 24 46 to 8
mls qos map cos-dscp 0 8 16 24 32 46 48 56
mls qos srr-queue input bandwidth 70 30
mls qos srr-queue input threshold 1 80 90
mls qos srr-queue input priority-queue 2 bandwidth 30
mls qos srr-queue input cos-map queue 1 threshold 2 3
mls qos srr-queue input cos-map queue 1 threshold 3 6 7
mls qos srr-queue input cos-map queue 2 threshold 1 4
mls qos srr-queue input dscp-map queue 1 threshold 2 24
mls qos srr-queue input dscp-map queue 1 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue input dscp-map queue 1 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue input dscp-map queue 2 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue input dscp-map queue 2 threshold 3 46 47
mls qos srr-queue output cos-map queue 1 threshold 3 4 5
mls qos srr-queue output cos-map queue 2 threshold 1 2
mls qos srr-queue output cos-map queue 2 threshold 2 3
mls qos srr-queue output cos-map queue 2 threshold 3 6 7
mls qos srr-queue output cos-map queue 3 threshold 3 0
mls qos srr-queue output cos-map queue 4 threshold 3 1
mls qos srr-queue output dscp-map queue 1 threshold 3 32 33 40 41 42 43 44 45
mls qos srr-queue output dscp-map queue 1 threshold 3 46 47
mls qos srr-queue output dscp-map queue 2 threshold 1 16 17 18 19 20 21 22 23
mls qos srr-queue output dscp-map queue 2 threshold 1 26 27 28 29 30 31 34 35
mls qos srr-queue output dscp-map queue 2 threshold 1 36 37 38 39
mls qos srr-queue output dscp-map queue 2 threshold 2 24
mls qos srr-queue output dscp-map queue 2 threshold 3 48 49 50 51 52 53 54 55
mls qos srr-queue output dscp-map queue 2 threshold 3 56 57 58 59 60 61 62 63
mls qos srr-queue output dscp-map queue 3 threshold 3 0 1 2 3 4 5 6 7
mls qos srr-queue output dscp-map queue 4 threshold 1 8 9 11 13 15
mls qos srr-queue output dscp-map queue 4 threshold 2 10 12 14
mls qos queue-set output 1 threshold 1 100 100 50 200
mls qos queue-set output 1 threshold 2 125 125 100 400
mls qos queue-set output 1 threshold 3 100 100 100 400
mls qos queue-set output 1 threshold 4 60 150 50 200
mls qos queue-set output 1 buffers 15 25 40 20
mls qos
!
crypto pki trustpoint TP-self-signed-1940388864
enrollment selfsigned
subject-name cn=IOS-Self-Signed-Certificate-1940388864
revocation-check none
rsakeypair TP-self-signed-1940388864
!
!
crypto pki certificate chain TP-self-signed-1940388864
certificate self-signed 01
xxxxxxxxxx xxxxxxxxxxxxxx xxxxxxxxxxxx xxxxxxxxxxx xxxxxxxxxxx
quit
!
!
!
!
!
spanning-tree mode pvst
spanning-tree extend system-id
!
vlan internal allocation policy ascending
!
ip ssh logging events
ip ssh version 2
!
class-map match-all AUTOQOS_VOIP_DATA_CLASS
match ip dscp ef
class-map match-all AUTOQOS_DEFAULT_CLASS
match access-group name AUTOQOS-ACL-DEFAULT
class-map match-all AUTOQOS_VOIP_SIGNAL_CLASS
match ip dscp cs3
!
policy-map AUTOQOS-SRND4-CISCOPHONE-POLICY
class AUTOQOS_VOIP_DATA_CLASS
set dscp ef
police 128000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_VOIP_SIGNAL_CLASS
set dscp cs3
police 32000 8000 exceed-action policed-dscp-transmit
class AUTOQOS_DEFAULT_CLASS
set dscp default
police 10000000 8000 exceed-action policed-dscp-transmit
!
!
!
!
!
!
interface FastEthernet0/1
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/2
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/3
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/4
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/5
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/6
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/7
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/8
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/9
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/10
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/11
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/12
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/13
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/14
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/15
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/16
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/17
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/18
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/19
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/20
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/21
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/22
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/23
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface FastEthernet0/24
description PC+TEL
switchport access vlan 20
switchport mode access
switchport nonegotiate
switchport voice vlan 122
srr-queue bandwidth share 1 30 35 5
priority-queue out
mls qos trust device cisco-phone
mls qos trust cos
macro description cisco-phone
auto qos voip cisco-phone
spanning-tree portfast
spanning-tree bpduguard enable
service-policy input AUTOQOS-SRND4-CISCOPHONE-POLICY
!
interface GigabitEthernet0/1
description Trunk vers IP96
switchport trunk native vlan 333
switchport mode trunk
switchport nonegotiate
storm-control broadcast level 20.00
!
interface GigabitEthernet0/2
description Trunk vers IP96
switchport trunk native vlan 333
switchport mode trunk
switchport nonegotiate
storm-control broadcast level 20.00
!
interface Vlan1
no ip address
shutdown
!
interface Vlan2
ip address 192.168.x.xx 255.255.255.0
!
ip default-gateway 192.168.x.x
ip http server
ip http authentication local
ip http secure-server
!
ip access-list extended AUTOQOS-ACL-DEFAULT
permit ip any any
!
!
!
vstack
privilege exec level 0 enable
privilege exec level 0 disable
!
line con 0
password 7 xxxxxxxxxxxxxxxxx
line vty 0 4
password 7 xxxxxxxxxxxxxxxxx
length 0
transport input ssh
line vty 5 15
password 7 xxxxxxxxxxxxxxxxx
length 0
transport input ssh
!
ntp server 192.168.xxx.x prefer
ntp server 192.168.xxx.x
end

Aussi, auriez-vous des commentaires à me faire sur cette configuration ?

En vous remerciant d'avance.
Arnaud

Publicité

arnaudperfect

Bon trouvé !

J'ai changeé ma façon de créer mon utilisateurs et mots de passes.

Code :

! Ajout de mot de passe pour l'authentification
conf t
service password-encryption !activé le criptage des MDP
exit
wr
conf t
no enable password
enable secret xxxxx
line con 0
login local
password xxxxx
exit
line vty 0 15
login local
password xxxxx
end
wr
! Créer un utilisateur administrateur
conf t
no aaa new-model
username admin privilege 15 password xxxxx
exit
wr

FORUM HardWare.fr

Systèmes & Réseaux Pro

Réseaux

Switch Cisco : arrive directement en mode enable après s'être loggué

Sujets relatifs
1 swicth vers 2 core switch	Normes 802.1x & mini switch
enregistrer une configuration ip/vpn cisco -> gns3 erreur	donner internet à un switch avec mobile tethering ?
Quel adresse pour routeur cisco? 2 réseaux différents	Config routeur cisco rv320
Reseau entreprise switch netasq sfr box	outil pour config massive switch cisco
Choix de switch pour filiales
Plus de sujets relatifs à : Switch Cisco : arrive directement en mode enable après s'être loggué

Page générée en 0.122 secondes