Most of us know that the type 7 password used on Cisco routers/switches isn’t very secure. Just do a Google search for “cisco type 7 decrypt,” and you will find plenty of websites that decrypt it for you.
Most of us don’t realize that you don’t need any external tools…your router can also decrypt it for you.
Here’s how to do it:
R1(config)#username RENE password MYPASSWORD
R1(config)#service password-encryptionFirst, I will configure a username with a password and enable password encryption. Let’s see what it looks like in the running config:
R1#show run | include username
username RENE password 7 080C757E282A36203D3928To decrypt this string, we need to use a key chain:
R1(config)#key chain DECRYPT
R1(config-keychain)#key 1
R1(config-keychain-key)#key-string ?
0 Specifies an UNENCRYPTED password will follow
7 Specifies a HIDDEN password will follow
LINE The UNENCRYPTED (cleartext) user passwordWe’ll use “7” and paste the password string here:
R1(config-keychain-key)#key-string 7 080C757E282A36203D3928Now take a look at the key chain that we just configured:
Nice post Rene. There’s always something new to learn here. Love your work!
Dear Rene
thanks a lot.It was nice.