cancel
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
804
Views
0
Helpful
3
Replies

ASA5510 Unable to change enable password via pass recovery

dluff4343
Level 1
Level 1

Hello,

I have an ASA5510 for a customer, that no one knows the enabe pass word for.

I have gone throught the ASA pass revovery procedures, got into the enable via pass revovery,   typed   enable password XXXXXXXX

then when I do a show run,  I see the encrypted string change for the enable pass from what is was , but when I  copy run start, change config register back to default setting and reload,  still cannot get into the enable mode.   

It's almost like the old enable pass is cached somehow and even though I am changing it when in pass recovery, it is not changing.

I saw a post somehwere,  where someone said you can get the enable password to nothing (blank)  by  typing enable password ,  and just entering.

That is my next option to try when I do the pass revovery again. 

Has anyone see this issue,  if so how was it resolved.

thanks

3 Replies 3

Maykol Rojas
Cisco Employee
Cisco Employee

Hello there,

You must first copy startup to running, then change the enable password, if you have trouble, you can also create a username and password, then  issue the command aaa authentication serial LOCAL. That way you will enter to the console using the username and password you created, then issue the command login and put the username and password you created again, that will give you access.

Mike

Maykol,   thanks for the response.    Yes I am following the whole pass recovery procedures, so I am doing copy start run first.  So I am getting to # level prompt via pass recovery.     I have successfully changed the  username and password associated to that username,  but not the enable password.  as I said I can see the encry string change, but does not take the new enable pass that I have typed in  when I try to get back in.

In a few hours I will be on the customer site and I am going to try to set the  enable password   to blank by just typing "enable password"  (enter)

I will post back how that works.

thanks again

Hello Derek

Sounds fine, let mek now how it goes.

Thanks!

Mike

Mike
Review Cisco Networking for a $25 gift card