Password Recovery Procedure - Cisco 10000 Series Troubleshooting Manual

Password Recovery Procedure

Password Recovery Procedure
To recover or replace a lost enable, enable secret, or console login password, use this procedure:
Attach an ASCII terminal to the console port on the router.
Step 1
Configure the terminal to operate at 9600 baud, 8 data bits, no parity, and 1 stop bit.
Step 2
If you can log in to the router as a nonprivileged user, enter the show version command to display the
Step 3
existing configuration register value, then go to Step 6. If you cannot log in to the router at all, go to the
next step.
Press the Break key or send a break from the console terminal.
Step 4
•
•
Within 60 seconds of restoring the power to the router, press the break key or send a break. This action
Step 5
causes the router to enter the ROM monitor and display the ROM monitor prompt (
Set the configuration register using the configuration register utility. Enter the confreg command at the
Step 6
ROM monitor prompt as follows:
rommon> confreg
Answer yes to the enable "ignore system config info?"
Reboot the router by entering the reset command:
Step 7
rommon> reset
The router initializes, the configuration register is set to 0x142, and the router boots the system image
from Flash memory and enters the system configuration dialog (setup):
--- System Configuration Dialog --
Enter no in response to the system configuration dialog prompts until the following message appears:
Step 8
Press RETURN to get started!
Step 9 Press Return. The user EXEC prompt appears:
Router>
Enter the enable command to enter privileged EXEC mode. Then enter the show startup-config
Step 10
command to display the passwords in the configuration file as follows:
Router# show startup-config
Scan the configuration file display, looking for the passwords (the enable passwords are usually located
Step 11
near the beginning of the file, and the console login or user EXEC password is near the end). The
passwords displayed appear similar to the following:
enable secret 5 $1$ORPP$s9syZt4uKn3SnpuLDrhuei
enable password 23skiddoo
.
.
line con 0
password onramp
Cisco 10000 Series Router Troubleshooting Guide
7-2
If break is enabled, the router enters the ROM monitor, indicated by the ROM monitor prompt
( ). Go to Step 6.
rommon>
If break is disabled, power cycle the router (turn off the router or unplug the power cord, and then
restore power). Then go to Step 5.
Chapter 7 Replacing or Recovering Passwords
rommon>
).
OL-0439-02