Chapter 6 Administering The Access Point; Preventing Unauthorized Access To Your Access Point; Protecting Access To Privileged Exec Commands - Cisco Aironet 1100 Series Installation And Configuration Manual

Preventing Unauthorized Access to Your Access Point

Preventing Unauthorized Access to Your Access Point

You can prevent unauthorized users from reconfiguring your access point and viewing configuration
information. Typically, you want network administrators to have access to the access point while you
restrict access to users who connect through a terminal or workstation from within the local network.
To prevent unauthorized access to your access point, you should configure one of these security features:
•
•

Protecting Access to Privileged EXEC Commands

A simple way of providing terminal access control in your network is to use passwords and assign
privilege levels. Password protection restricts access to a network or network device. Privilege levels
define what commands users can issue after they have logged into a network device.
For complete syntax and usage information for the commands used in this section, refer to the Cisco IOS
Note
Security Command Reference for Release 12.1.
This section describes how to control access to the configuration file and privileged EXEC commands.
It contains this configuration information:
•
•
•
•
•
Default Password and Privilege Level Configuration
Table 6-1
Table 6-1 Default Password and Privilege Levels
Feature
Username and password
Enable password and privilege level
Cisco Aironet 1100 Series Access Point Installation and Configuration Guide
6-2
Username and password pairs, which are locally stored on the access point. These pairs authenticate
each user before that user can access the access point. You can also assign a specific privilege level
(read only or read/write) to each username and password pair. For more information, see the
"Configuring Username and Password Pairs" section on page
and the default password is Cisco. Usernames and passwords are case-sensitive.
Username and password pairs stored centrally in a database on a security server. For more
information, see the "Controlling Access Point Access with RADIUS" section on page
Default Password and Privilege Level Configuration, page 6-2
Setting or Changing a Static Enable Password, page 6-3
Protecting Enable and Enable Secret Passwords with Encryption, page 6-4
Configuring Username and Password Pairs, page 6-5
Configuring Multiple Privilege Levels, page 6-6
shows the default password and privilege level configuration.
Default Setting
Default username is Cisco and the default password is Cisco.
Default password is Cisco. The default is level 15 (privileged EXEC
level). The password is encrypted in the configuration file.
Chapter 6 Administering the Access Point
6-5. The default username is Cisco,
6-7.
OL-2851-01