Basic Configuration of Cisco Switch

In this post, I will teach you how to do a basic switch configuration. We will learn how to secure access to the command-line interface (CLI) and console ports. I will also show you how to configure messages and setup banners. It’s important to set up these banners to warn unauthorized users.

Verify the Default Switch Configuration

Step 1: Enter the privileged EXEC mode.

  • Enter privileged EXEC mode by entering the enable command:

  • Switch> enable

Step 2: Check running switch configuration.

  • Enter the show running-config command.

  • Switch# show running-config

2. Basic Cisco Switch Configuration

1.First, we need to give our switch a name.

When configuring a switch you may have to move between configuration modes.

  • Switch# configure terminal
  • Switch(config)# hostname S1
  • S1(config)# exit
  • S1#

2. Create a password for the console line

To secure the console line, we need to access config-line and create a password.

  • S1# configure terminal
  • Enter configuration commands, one per line. End with CNTL/Z.
  • S1(config)# line console 0
  • S1(config-line)# password (your password)
  • S1(config-line)# login
  • S1(config-line)# exit
  • S1(config)# exit%SYS-5-CONFIG_I: Configured from console by console
  • S1#

3. Exit privileged mode to check to make sure the console port is secure.

  • S1# exit
  • Switch con0 is now available
  • Press RETURN to get started.
  • User Access Verification
  • Password: (your password)
  • S1>

4. Secure privileged mode access.

First, we will need to set up a password. This password will protect and secure our privileged mode.

  • S1> enable
  • S1# configure terminal
  • S1(config)# enable password c1$c0
  • S1(config)# exit
  • %SYS-5-CONFIG_I: Configured from console by console
  • S1#

5.  Check that privileged mode is secure.

  • Enter EXIT to log out 
  • User Access Verification
  • Password: (console line password)
  • S1> enable
  • Password: (privileged mode password)
  • S1# show running-config

6. Encrypt password to secure access.

  • S1# config t
  • S1(config)# enable secret (password)
  • S1(config)# exit
  • S1#

7: Verify that the enable secret password is set and added to the config file.

  • S1# show run

8. Encrypt console password

  • S1# config t
  • S1(config)# service password-encryption
  • S1(config)# exit

9. Configure a MOTD Banner

  • S1# config t
  • S1(config)# banner motd “This is a secure system. Authorized Access Only!”
  • S1(config)# exit
  • %SYS-5-CONFIG_I: Configured from console by console
  • S1#

10. Save config file

  • S1# copy running-config startup-config
  • Destination filename [startup-config]?[Enter]
  • Building configuration…
  • [OK]

Congratulations you are now able to do basic switch configurations.

1 Comment

  1. Pingback: Implementing Basic Connectivity - VUSHITEK

Leave A Reply