Security - Steps For Cisco ASA5505 Password Recovery
All passwords should be recorded and keep in a safe secure place, but when the password is lost, becomes corrupted or is just not known then it may be necessary use the Cisco ASA password recovery procedure. This procedure doses not actually recover an existing password but give you privileged access to the device, enabling you to change the existing password with a new one.
Once you have changed the password and have regained management of the Cisco ASA security device you should record the new password and place it in a safe secure place for future access.
Password Recovery Procedure:
Connect the PC serial port to the console port using a console rollover cable.
Execute a terminal emulator program like Hyper Terminal or Putty and configure the serial connection with 9600 baud, 8 data bits,no parity,1 stop bit, no flow control.
Reset the Power on the security device.
During the startup process, press the Escape key when prompted to enter ROMMON.
Enter the confreg command.
Record your current configuration register value, so it can be restored later.
Enter "y" to the question "Do you wish to change this configuration y/n".
Accept the default values for all settings, except "disable system configuration"; enter Y for this value.
Reload the security device by entering the boot command.
Enter privileged mode by entering the enable command.
When prompted for the password, press Return.
Load the existing startup configuration by entering copy startup-config running-config.
Enter global configuration mode by entering the configure terminal command.
Change the passwords by entering the following commands. Password new-password, Enable password new-password, Username existing-username password new-password.
Restore the old configuration register value by entering config-register recorded-value from step 5.
Save the new passwords by entering copy running-config startup-config.
Danos tu comentario
Post a Comment