Security Basics mailing list archives

Re: CISCO Catalyst

From: "Gou, S.TOKIDA" <uni () ss iij4u or jp>
Date: Thu, 24 Jan 2008 01:56:20 +0900

Dear all.

I need to audit CAT 6509 and 2950

Plz type on CUI (conf)#autosecure
This command like a help tool for securering Cisco Devices.
autosecure to set secure parameter on configulation your CAT-BOX.

 - Change password periodically.
 - Lenght of password
 - Historical of password


I see... Cisco Catalyes features may not include a Password EXPIRE CHECK 
and Password Historical checks.

If I got on your CAT-BOX Console, I can try it (see below). 

Step1 conf t
Step2 (config)# archive
Step3 (config-archive)# log config
Step4 (config-archive-log-config)# logging enable
Step5 (config-archive-log-config)# logging size [entries:set to 1-1000]
Step6 (config-archive-log-config)# hydekeys
Step7 (config-archive-log-config)# notify syslog

Sorry Cheap Comments...

On 23 Jan 2008 09:26:31 -0000
pepsdiaz () gmail com wrote:


Dear all,

I need to audit a CISCO Catalyst 6509 and 2950. I would like to know, if you can set up several users in order log 
their activities on it and how to do that.
Besides, I would like to know if you can set up password protection measures like:
 - Change password periodically.
 - Lenght of password
 - Historical of password

Can you set up more than one user role or just the administrator?

Thanks in advance to everybody.

Current thread:

CISCO Catalyst pepsdiaz (Jan 23)
- RE: CISCO Catalyst Worrell, Brian (Jan 23)
  - Re: CISCO Catalyst Leif Hardison (Jan 23)
- Re: CISCO Catalyst Andrea Gatta (Jan 23)
- RE: CISCO Catalyst Erik Soosalu (Jan 23)
- Re: CISCO Catalyst Gou, S.TOKIDA (Jan 23)
- Re: CISCO Catalyst a42n8k9 dejazzd.com (Jan 23)
- RE: CISCO Catalyst Aaron T. Rohyans (Jan 23)
- R: CISCO Catalyst Vega - Brunello Ivan (Jan 23)
  - RE: CISCO Catalyst Worrell, Brian (Jan 23)
  - Re: R: CISCO Catalyst Jens Link (Jan 23)
    - RE: R: CISCO Catalyst Erik Soosalu (Jan 23)
- Re: CISCO Catalyst brian . bevers (Jan 23)