Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?


Configuring Junos OS to Set Console and Auxiliary Port Properties

Most Juniper Networks devices have a console port and an auxiliary port for connecting terminals to the router or switch. The console port is enabled by default, and its speed is 9600 baud. The auxiliary port is disabled by default.

To configure the properties for the console and auxiliary ports, include the ports statement at the [edit system] hierarchy level:

By default, the terminal type is set to unknown. To change the terminal type, include the type statement, specifying a terminal-type of ansi, vt100, small-xterm, or xterm. The first three terminal types set a screen size of 80 columns by 24 lines. The last type, xterm, sets the size to 80 columns by 65 rows.

By default, the console session is not logged out when the data carrier is lost on the console modem control lines. To change this default and log out the session automatically when the data carrier on the console port is lost, include the log-out-on-disconnect statement. You can use the show system users command to verify the console session is logged out.

By default, terminal connections to the console and auxiliary ports are secure. When you configure the console as insecure, root logins are not allowed to establish terminal connections. In addition, superusers and anyone with a user identifier (UID) of 0 are not allowed to establish terminal connections in multiuser mode when you configure the console as insecure. To disable root login connections to the console and auxiliary ports, include the insecure statement. This option can be used to prevent someone from attempting password recovery by booting into single-user mode, if they do not know the root password.

To disable console login, include the disable statement. By default, console login is enabled.


For Common Criteria compliance, the console port must be disabled.