Cisco Password Recovery

Retrieving your password using the majority of Cisco routers is easily achieved by accessing the console port. The problem is that Cisco has bought out a large number of other companies and placed their company label on the router. As a result, password retrieval procedures differ significantly among Cisco devices. Furthermore, the retrieval process changed significantly because of IOS upgrades. The intent of this article is to offer basic instructions that will allow the majority of Cisco device users to accomplish this task. Through following these instructions, you will be able to retrieve your lost password from most Cisco routers. Please note that these instructions are designed to assist those using the 2000, 2500, 3000, 4000, 7000, and IGS devices.

Section I: Checking your Configuration Register

The first step in retrieving your password is to establish a connection between a terminal, or a PC operating terminal emulation software, and the console port on your Cisco router. The terminal settings should be 9600 bps with eight data bits. Select no parity, and choose two stop bits. Be aware that some routers, like the AccessPro Card, require one rather than two stop bits. Next, power cycle your router. Before 60 seconds have elapsed from the time that you power on the router, be sure to send a BREAK signal. This should be done either from the terminal or from the software being used.

* Persons using Telix should key in [CTRL-END].
* Those using Procomm, key in [ALT-B].
* If using Hyperterminal, key [CTRL-PAUSE]

If the signal from the cable being used to connect with the router is adequate, and the command is entered correctly, a ‘>’ prompt will appear on the screen. Do not mistake this for an IOS prompt. It is a prompt for the ROM monitor.

* The ROM prompt for certain routers, including the Cisco 1003, 1600, 2600, 3600, 4500, 7200, 7500, 12000, AS5200, AS5300, uBR7246 and IDT Orion-Based routers is ‘rommon’.
* The boot monitor prompt used for the 3800 ERM is ‘3800-ERM (boot)’. Through this prompt, the privileged mode can be entered immediately from this point. When this is done, the prompt will then revert to ‘3800-ERM(boot)#’.

Carefully examine the configuration’s register by entering ‘e/s 2000002’. Record the listed value that identifies the register. Key in ‘Q’ to quit viewing the register and re-access the prompt for the ROM monitor.

* If it is possible to login to your router, examine the register by typing ‘show version’.

access the prompt for the ROM monitor.

* If it is possible to login to your router, examine the register by typing ‘show version’. With some routers, a password is not necessary to login through the console port.
* Certain routers, including the 1003, 1600, 2600, 3600, 4500, 7200, 7500, 12000, AS5200

. With some00, 2600, 3600, 4500, 7200, 7500, 12000, AS5200, AS5300, as well as the uBR7246 and IDT Orion versions, require users to enter the commands ‘confreg’ or ‘config-register’ to access this register. Users see several questions. Only the following questions should be answered with yes:

o Do you wish to change the configuration?
o Ignore system config info?
o Change boot characteristics?

Answer no to every other question. When you reach the prompt asking you to ‘enter to boot’, key in ‘2’ and hit ENTER. Respond negatively when asked whether you wish to change the configuration at this point. To set the configuration register, key in ‘o/r0x42’. This command will order your router to reboot from flash ROMs. If you receive a message that these are corrupted, type in ‘o/r0x41’, which orders the router to boot from the boot ROMs.

* To alter the configuration register in certain early routers, including the CGS, MGS, AGS, AGS+, and early 7000 series routers, you must move the hardware jumpers. Sometimes, these are on the CSC processor card, and users must change them by moving jumper eight to position fifteen.

DIP switches are employed by earlier versions of the IGS routers to set values in the configuration register. Those using this model should flip switches 0 through 3 OFF (the UP position), while switching 7 ON (the DOWN position).

Section II: How to Modify the Configuration

* Power cycle your router.
* Respond negatively to all questions concerning setup.
* When you reach the ‘Router >‘ prompt, key in ‘enable’. This command will permit you to access privileged mode. The corresponding ‘Router#’ prompt will appear.
* Enter the command ‘show startup-config’. This permits you to see the file containing device configurations. Locate the

# onfig’. This permits you to see the file containing device configurations. Locate the password. If it is not encoded, write it down and reboot your router. If it is encoded, continuing following the directions below.
# Enter the command ‘configure memory’. This permits you to copy the router’s configuration file from NVRAM over to RAM. Note that prior to starting this task, the router’s configuration file will be empty. After completing this task, it will be the same configuration that was originally stored in NVRAM by the router’s administrator.
# Key in the following command to access configuration mode: ‘configure terminal’.
# Determine which of the following security options you wish to use:

* Set a login password by entering the command ‘password’. If you do not want to use a password, type in ‘no password’.
* Set an enable password by entering the command ‘enable password’. If you do not want to use an enabled password, type in ‘no enable password’.
* Set a secret password by entering the command ‘enable secret’. If you do not want to use a secret password, type in ‘no enable secret’.
* If you prefer to use a password for the console port, key in ‘line 0’. Then key in ‘password’. If you do not want to have a password on the console port, key in ‘line 0’, followed by ‘no password’.

* Be aware that if you change any of these password settings, you will quite probably irritate any prior router administrator. It is not necessary to change any of the passwords unless they are encoded. If, however, they were encoded, you must either change or decode them. To read further about the procedure for decoding passwords, read the following FAQ on How do I decrypt Cisco passwords?.
* By keying in [CTRL-Z], you can exit the configuration mode. Enter the command ‘copy running-config startup config’, which will copy the edited configuration into the startup-config. Entering this command allows you to save your changes to the router’s configuration.

Section III: Completing the task

Power cycle your router.

Reset the configuration register to its previous value. To do this, key in ‘configure terminal’. This allows you to enter the necessary mode. Set the register value by typing ‘config-register’, and then enter the value that you previously recorded. If the value was not previously available, using a default setting of 0×2102 is nearly always sufficient. (This value is the default setting for most Cisco routers.)

1. If you are using the Router Switch Processor (RSP4), use the value 0×0101 instead.
2. If any jumpers were moved, or DIP switches were set during this process, return them to their original settings.

With some routers, you may have to erase the entire configuration registry to retrieve your lost password. For example, users of the Catalyst 2820 ATM are required to access the Port Configuration Menu, and then reset registry values to factory default settings. The 500-CS model will revert to factory default very easily. Just depress the reset button located atop the router’s case simultaneously with turning on the device. If you are using the Catalyst 3000, you will need to depress the SysReq button, which is located on the router’s back panel, for a period of five seconds. After you release the button, choose the menu option ‘Clear Non-Volatile RAM’.

Article Source:

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>