02-26-2013 02:40 PM - edited 03-11-2019 06:06 PM
Hi.
I forgot the user for management a IPS SSM-10, when i follow the procedure to reset the password for cisco user, i can get into the module, i change the password and every thing is OK, but when i tried to configure y don´t have rights to do anything.
if i see the privileges for the user cisco this is the result
EDGE-IPS2# sh user
CLI ID User Privilege
* 4143 cisco viewer
Application Partition:
Cisco Intrusion Prevention System, Version 6.1(1)E2
Host:
Realm Keys key1.0
Signature Definition:
Signature Update S364.0 2008-10-24
Virus Update V1.4 2007-03-02
OS Version: 2.4.30-IDS-smp-bigphys
Platform: ASA-SSM-10
Serial Number: JAF1208BNPP
License expired: 20-Jun-2009 UTC
Sensor up-time is 1:09.
Using 657850368 out of 1032495104 bytes of available memory (63% usage)
system is using 17.7M out of 29.0M bytes of available disk space (61% usage)
application-data is using 41.5M out of 166.8M bytes of available disk space (26% usage)
boot is using 40.5M out of 68.6M bytes of available disk space (62% usage)
MainApp M-2008_APR_24_19_16 (Release) 2008-04-24T19:49:05-0500 Running
AnalysisEngine ME-2008_JUN_05_18_26 (Release) 2008-06-05T18:55:02-0500 Running
CLI M-2008_APR_24_19_16 (Release) 2008-04-24T19:49:05-0500
Upgrade History:
* IPS-K9-6.1-1-E2 22:40:50 UTC Tue Feb 26 2013
IPS-sig-S364-req-E2.pkg 18:43:20 UTC Wed Nov 12 2008
Recovery Partition Version 1.1 - 6.1(1)E2
Host Certificate Valid from: 17-Nov-2008 to 18-Nov-2010
What can i do in this case?
IPS Info
Getting details from the Service Module, please wait...
ASA 5500 Series Security Services Module-10
Model: ASA-SSM-10
Hardware version: 1.0
Serial Number: JAF1208BNPP
Firmware version: 1.0(11)4
Software version: 6.1(1)E2
MAC Address Range: 001e.f710.5b6c to 001e.f710.5b6c
App. name: IPS
App. Status: Up
App. Status Desc:
App. version: 6.1(1)E2
Data plane Status: Up
Status: Up
Mgmt IP addr: X.X.X.X
Mgmt web ports: 443
Mgmt TLS enabled:
Solved! Go to Solution.
02-26-2013 03:51 PM
02-26-2013 03:26 PM
The process will normally use the following command:
hw-module module 1 password-reset
It will reload the ASA and when loggin back the "Cisco" username will have admin rights.
If this is not your case, a re-image of the unit will be the next step, keep in mind that this will remove all the custom config.
02-26-2013 03:31 PM
Thanks Jocamare
I will try to re-image the unit, do you have a procedure to do this?
02-26-2013 03:51 PM
02-27-2013 09:38 AM
thanks Jocamare you are the best, it works with the upgrade
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide