Hi,

thanks for the Answer.

but I would like to reset the "root_enable" PW in the non-FIPS mode. not the admin PW.

________________

XXprimeXX/primex# root
root          root_disable  root_enable
XXprimeXX/primex# root
Enter root password :
% Error : invalid root password
XXprimeXX/primex# root_enable
% Error : root password already set
XXprimeXX/primex#

_______________

Ah ok my admin and root are the same :)

try this may work

http://www.cisco.com/c/en/us/td/docs/net_mgmt/prime/infrastructure/2-1/administrator/guide/PIAdminBook/maint_sys_health.html#pgfId-1082716

I already tried it.

to do that I have to enter to the root mode :-)

and I don`t have the PW therefor.

without to enter the the "root-mode" I change the web root PW with this command.

Ha I should have noticed that bit early still

try this

root_disable

root_enable

and then you should be able to change the password

for GUI

ncs webroot disable

then

ncs webroot enable

and then you should be able to change the GUI root password

I need the current root PW für the "root_disable" command.

__________

primeXX/PrimeX# root_disable
Enter root password :

_____

In PI 2.2, there is no direct command to reset root shell password since we make sure customer is well aware of this password.

If you are well done with  root shell operation, disable the root password immediately in order to avoid attack.

Please find the following procedure to recover the root shell password:

1- Boot off of a CentOS/RedHat 5 or 6 install CD or DVD.

Use any of the following ISO images:

CentOS-5.10-x86_64-bin-DVD-1of2.iso
CentOS-5.11-x86_64-bin-DVD-1of2.iso
CentOS-6.6-x86_64-bin-DVD1.iso

2- Once booted, type "linux rescue" on prompt and hit ENTER key

3- Chose default options for language/keyboard and don't choose network option

4- You will see a message as below:
The rescue environment will now attempt to find your Linux installation and mount it under the directory /mnt/sysimage. You can then make any changes required to your system. If you want to proceed with this step choose 'Continue'. You can also choose to mount your file systems read-only instead of read-write by choosing 'Read-only'. If for some reason this process fails you can choose 'Skip' and this step will be skipped and you will go directly to a command shell.

Choose "Continue" in this screen

5- Once an existing installation is found, it will be mounted to "/mnt/sysimage" location and you will be dropped to command prompt.

6- Change root to the PI install location by using following command:

# chroot /mnt/sysimage

7- Move /storeddata/rootpatchpw

#mv /storeddata/rootpatchpw /root/

8- Now type "exit" and hit ENTER key

9- Type "reboot" and boot into PI

Please rate my asnwer :)

Hi all,
I have error to my CPI 3.1
In my console ESXI:
/dev/mapper/smosvg-optvol 2376/256000 files 244058/1024000 blocks (check after next mount) [failed]

An error occured during the file system check

Need your help

On Prime 3.1.6 I found the path for rootpatchpw was actually /storedconfig/

In short all steps above works - however for step 7 use the following:

#mv /storedconfig/rootpatchpw /root/

Thanks for all the other steps @renjithg!

Hi Evan

after following your advice i still have CLI login prompt & fail to login with root as user. any other users are disallowed to CLI because root is primary admin account in our CPI.

disregard. resolved with root password change from rescue CD