Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1837
Views
0
Helpful
4
Replies

ISE cli user

Go to solution
asmlicense
Level 1
Level 1

‎07-28-2021 12:08 AM

hi everyone,

 

the problem - unfortunately we have just 1 cli admin user and we have know idea what is the password. after how many unsuccessful attempts user is going to blocked state and how long it will be in blocked state. if forever so we have to start the recovery process.

 

thanks in advance

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to asmlicense

‎07-28-2021 02:35 AM

it take 20-40min as per my experience depends device reboot times

 

here is proceedure.

 

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/200568-ISE-Password-Recovery-Mechanisms.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

0 Helpful
4 Replies 4

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎07-28-2021 01:14 AM

yes i have seen this same case on ACS also, they try to attempt more than 3 times it locks, you only have option to recover using recover CD. same case with ISE, once it blocked its blocked i guess. (since we always use central authnetication or different admin account to save main user admin account for emergency). ISE has same username GUI and CLI,

 

if you like to add one more user for CLI admin you an use same syntax and test it.

 

"username <username> password plain <cleartext password> role admin"

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
asmlicense
Level 1
Level 1
In response to balaji.bandi

‎07-28-2021 02:03 AM

As I know GUI and CLI user are not the same. Because we have some GUI users and can not open CLI via them.

 

Do you know how long downtime will be while password recovery process?

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame
In response to asmlicense

‎07-28-2021 02:35 AM

it take 20-40min as per my experience depends device reboot times

 

here is proceedure.

 

https://www.cisco.com/c/en/us/support/docs/security/identity-services-engine/200568-ISE-Password-Recovery-Mechanisms.html

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
asmlicense
Level 1
Level 1
In response to balaji.bandi

‎07-28-2021 02:46 AM

Thanks a lot

0 Helpful
Customers Also Viewed These Support Documents