There are three ways to restore enable access to a router when the password
is lost. You can VIEW the password, CHANGE the password, or ERASE the
configuration and start over as if the box was new.
Each procedure follows these basic steps:
1. Configure the router to boot up without reading the configuration
memory (NVRAM). This is sometimes called the test system mode.
2. Reboot the system.
3. Access enable mode (which can be done without a password if you are in
test system mode).
4. VIEW or CHANGE the password, or ERASE the configuration.
5. Reconfigure the router to boot up and read the NVRAM as it normally
does.
6. Reboot the system.
NOTE: Some password recovery requires that a terminal issues a
Break signal; you must be familiar with how your terminal or PC
terminal emulator issues this signal. For example, in ProComm,
the keys Alt-B will by default generate the Break signal, and in
Windows Terminal you press Break or CTRL-Break. Windows Terminal
also allows you to define a function key as BREAK. From the
terminal window, select Function Keys and define one as break by
filling in the characters ^$B (Shift 6, Shift 4, and Capital B).
The following six sections contain detailed instructions for specific Cisco
routers. Locate your router in the section headings to determine which
technique to use.
Technique #1
IGS Routers Running Software Earlier Than 9.1
IGS routers have a bank of DIP switches on the rear panel. If they are
running software earlier than 9.1, then these switches are used for
password recovery.
1. Attach a terminal or PC with terminal emulation to the console port of
the router.
2. Power the router down.
3. Record the settings of the switches on the rear panel.
4. Set switch 7 ON (or down).
5. Set switches 0-3 OFF (or up).
6. Power the router up. It will boot up to the > prompt.
7. Type "b" at the > prompt. The router is in test-system mode.
8. Press return until the "Test-System>" prompt appears.
9. Type "enable" at the prompt. You'll be in enable mode and see the
"Test-System#" prompt.
10. Choose one of these three options:
o To VIEW the password type "show config."
o To CHANGE the password (in case it is encrypted, for example):
a. Type "config mem" to copy the NVRAM into memory.
b. Type "config term" and make the changes to the configuration.
conf t
enable password password
ctrl-z
c. Type "write mem" to commit the changes.
o To ERASE the config, type "write erase".
11. Restore the switch setting to those recorded in step 3.
12. Reboot the router.
Technique #2
500-CS Communication Servers
The password cannot be recovered from the 500-CS since it does not have a
console port. Your only option is to erase the configuration.
1. Power the router off by unplugging it.
2. Depress and hold the DEFAULT button on the front of the chassis.
3. Power the router back on.
4. Watch the OK and LAN LEDs. They will blink on, and then off.
5. When they blink off (after about 15 seconds), release the DEFAULT
button.
6. In 2-10 minutes, the 500-CS will enter setup mode as if it was factory
new.
7. Configure the router.
You could also recover a password on a 500 by holding the DEFAULT button
down for 30-45 seconds. The system will then be in test mode, and you can
follow the normal procedure for password recovery. See the earlier sections
for details.
0 comments:
Post a Comment