Can’t change ASA enable password

I stumbled upon a strange sympthon, when i changed the enable password of one my ASA firewalls it would accept the config but when i used the newly set password i couldn’t log in. So why isn’t it changing the password?

At first it really looks weird, you just changed it and it doens’t accept the newly set password.
So i started digging in the config and found that the aaa settings where set to a TACACS server!

So i removed all the rules in the configuration with :

  • aaa accounting
  • aaa authentication
  • aaa-server

Make sure you remove them in that order!
To check if all is gone :

show run  | grep aaa

Then you need to add a new rule so you can authenticate against the local database:

aaa authentication ssh console LOCAL

Now you can set your username and enable password to make it all complete:

enable password <your password>
username <username> password <password> privilege 15

That’s it, problem solved !

Check Also

Cisco AnyConnect Client on Mac java applet problem

  When you want to install the Cisco AnyConnect Client on Mac OS it will …

Leave a Reply

Your email address will not be published. Required fields are marked *