Problems getting config when not enable mode

Fred Jordan fjordan at hcs.net
Wed Jul 9 14:36:42 UTC 2003 

We are collecting cisco router config files from some of our customers.
Problems is we do not have enable mode access to the routers.
What we have is the ability to do "show config" at the default
privledge level that we log in with.

I have tried multiple permutations of autoenable/noenable and still
cannot get clogin to run the commands to collect the configs.

Here are examples of telneting into the router as well as running
clogin as user rancid with various .cloginrc permutations.
Any help is greatly appreciated.
					Thanks Much,
						Fred
==============================================================
= First try
= .cloginrc parameters
=add user     1.2.3.4  ranuser
=add password 1.2.3.4   {ranpass} {ranpass}
=add noenable 1.2.3.4
=add autoenable 1.2.3.4 0
= Note: this fails to run the commands passed to clogin
=
$ clogin -c 'show version; show diag' 1.2.3.4
1.2.3.4
spawn telnet 1.2.3.4
Trying 1.2.3.4...
Connected to 1.2.3.4.
Escape character is '^]'.

User Access Verification

Username: Kerberos:     No default realm defined for Kerberos!
ranuser
Password: 

router>enable
Password: 
% Access denied

router>
Error: Check your Enable passwd
$ 

==============================================================
= Second try
= .cloginrc parameters
=add user     1.2.3.4  ranuser
=add password 1.2.3.4   {ranpass} {ranpass}
=add noenable 1.2.3.4
=add autoenable 1.2.3.4 1
= Note: this fails to run the commands and timesout
=
$ clogin -c 'show version; show diag' 1.2.3.4
1.2.3.4
spawn telnet 1.2.3.4
Trying 1.2.3.4...
Connected to 1.2.3.4.
Escape character is '^]'.
User Access Verification

Username: Kerberos:     No default realm defined for Kerberos!
ranuser
Password: 

router>
Error: TIMEOUT reached
$

==============================================================
= Third try
= .cloginrc parameters
=add user     1.2.3.4  ranuser
=add password 1.2.3.4   {ranpass} {ranpass}
=add noenable 1.2.3.4
$ clogin -c 'show version; show diag' 1.2.3.4
1.2.3.4
spawn telnet 1.2.3.4
Trying 1.2.3.4...
Connected to 1.2.3.4.
Escape character is '^]'.

User Access Verification
Username: Kerberos:     No default realm defined for Kerberos!
ranuser
Password: 

router>enable
Password: 
% Access denied

router>
Error: Check your Enable passwd
$ 
==============================================================
= Fourth try
= .cloginrc parameters
=add user     1.2.3.4  ranuser
=add password 1.2.3.4   {ranpass} 
=add noenable 1.2.3.4
$ clogin -c 'show version; show diag' 1.2.3.4
1.2.3.4
Error: no enable password for 1.2.3.4 in /usr/local/rancid/.cloginrc.
$

More information about the Rancid-discuss mailing list