Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
458
Views
0
Helpful
3
Replies

New Cisco switch - onboarding with password issue

Go to solution
Rassic
Level 1
Level 1

‎08-07-2025 03:28 PM - edited ‎08-07-2025 03:33 PM

Hi, 

I have a new Cisco switch that is straight out the box and wish to onboard it using Catalyst CatC PnP. The new Cisco switch is prompting for a new password twice. Is there a way to bypass the initial password request or can it be performed in the Day 0 template?

 Thanks in advance.

Rassic

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Enes Simnica
Level 5
Level 5

‎08-07-2025 11:38 PM

Hey there Cisco friend. On new Cisco switches, the initial password prompt u see is part of Cisco’s Secure by Default feature (introduced in IOS XE 17.x and later). It’s mandatory at first boot and cannot be bypassed,  even for Catalyst Center (CatC) Plug and Play onboarding.

U’ll need to set the password manually the first time via console. After that, u can fully automate the rest using a Day 0 template in CatC or a bootstrap config from USB/PnP file. But the first password entry is always required for security reasons.

Hope it helps and PEACE!

 

-Enes

more Cisco?!
more Gym?!



If this post solved your problem, kindly mark it as Accepted Solution. Much appreciated!

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Enes Simnica
Level 5
Level 5

‎08-07-2025 11:38 PM

Hey there Cisco friend. On new Cisco switches, the initial password prompt u see is part of Cisco’s Secure by Default feature (introduced in IOS XE 17.x and later). It’s mandatory at first boot and cannot be bypassed,  even for Catalyst Center (CatC) Plug and Play onboarding.

U’ll need to set the password manually the first time via console. After that, u can fully automate the rest using a Day 0 template in CatC or a bootstrap config from USB/PnP file. But the first password entry is always required for security reasons.

Hope it helps and PEACE!

 

-Enes

more Cisco?!
more Gym?!



If this post solved your problem, kindly mark it as Accepted Solution. Much appreciated!
0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎08-08-2025 12:03 AM

Are you using DNAC(Catalyst center ) for device on-boarding ?

i do not think you can skip that option, rather you can setup a common password in template. later you can use that as fall back password if you have any TACACS or Radius setup.

https://www.cisco.com/c/en/us/td/docs/solutions/Enterprise/Plug-and-Play/solution/guidexml/b_pnp-solution-guide.html

Some workflow :

https://www.ciscolive.com/c/dam/r/ciscolive/emea/docs/2025/pdf/BRKOPS-2566.pdf

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Rassic
Level 1
Level 1

‎08-08-2025 06:21 AM - edited ‎08-08-2025 06:23 AM

Thank you for your responses, as per the advice it looks like manual intervention to set this password to proceed.

Rassic_0-1754659293114.png

 

0 Helpful
Customers Also Viewed These Support Documents