InformationSets a local username and password
Default device configuration does not require strong user authentication enabling unfettered access to an attacker that can reach the device. Creating a local account with a strong password enforces login authentication and provides a fallback authentication mechanism in case remote centralized authentication, authorization and accounting services are unavailable
SolutionRun the following to set a local username and password.
hostname(config)#username <local_username> password <local_password> privilege <level>
The privilege level is chosen between 0 and 15. If the privilege is not configured, the default one is 2.
The default username used for the first SSH connection or aaa authentication telnet console is asa but for versions from 8.4(2) and above, there is no default username