02-26-2013 02:40 PM - edited 03-11-2019 06:06 PM
Hi.
I forgot the user for management a IPS SSM-10, when i follow the procedure to reset the password for cisco user, i can get into the module, i change the password and every thing is OK, but when i tried to configure y don´t have rights to do anything.
if i see the privileges for the user cisco this is the result
EDGE-IPS2# sh user
CLI ID User Privilege
* 4143 cisco viewer
Application Partition:
Cisco Intrusion Prevention System, Version 6.1(1)E2
Host:
Realm Keys key1.0
Signature Definition:
Signature Update S364.0 2008-10-24
Virus Update V1.4 2007-03-02
OS Version: 2.4.30-IDS-smp-bigphys
Platform: ASA-SSM-10
Serial Number: JAF1208BNPP
License expired: 20-Jun-2009 UTC
Sensor up-time is 1:09.
Using 657850368 out of 1032495104 bytes of available memory (63% usage)
system is using 17.7M out of 29.0M bytes of available disk space (61% usage)
application-data is using 41.5M out of 166.8M bytes of available disk space (26% usage)
boot is using 40.5M out of 68.6M bytes of available disk space (62% usage)
MainApp M-2008_APR_24_19_16 (Release) 2008-04-24T19:49:05-0500 Running
AnalysisEngine ME-2008_JUN_05_18_26 (Release) 2008-06-05T18:55:02-0500 Running
CLI M-2008_APR_24_19_16 (Release) 2008-04-24T19:49:05-0500
Upgrade History:
* IPS-K9-6.1-1-E2 22:40:50 UTC Tue Feb 26 2013
IPS-sig-S364-req-E2.pkg 18:43:20 UTC Wed Nov 12 2008
Recovery Partition Version 1.1 - 6.1(1)E2
Host Certificate Valid from: 17-Nov-2008 to 18-Nov-2010
What can i do in this case?
IPS Info
Getting details from the Service Module, please wait...
ASA 5500 Series Security Services Module-10
Model: ASA-SSM-10
Hardware version: 1.0
Serial Number: JAF1208BNPP
Firmware version: 1.0(11)4
Software version: 6.1(1)E2
MAC Address Range: 001e.f710.5b6c to 001e.f710.5b6c
App. name: IPS
App. Status: Up
App. Status Desc:
App. version: 6.1(1)E2
Data plane Status: Up
Status: Up
Mgmt IP addr: X.X.X.X
Mgmt web ports: 443
Mgmt TLS enabled:
Solved! Go to Solution.
02-26-2013 03:51 PM
02-26-2013 03:26 PM
The process will normally use the following command:
hw-module module 1 password-reset
It will reload the ASA and when loggin back the "Cisco" username will have admin rights.
If this is not your case, a re-image of the unit will be the next step, keep in mind that this will remove all the custom config.
02-26-2013 03:31 PM
Thanks Jocamare
I will try to re-image the unit, do you have a procedure to do this?
02-26-2013 03:51 PM
02-27-2013 09:38 AM
thanks Jocamare you are the best, it works with the upgrade
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: