cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

5449
Views
0
Helpful
3
Replies
Highlighted
Beginner

Recover VPN keys and user passwords on ASA5505. Is it possible?

Hi All.

I'm just wondering, is it possible to find out or recover  the passwords for users and pre-shared key for tunnel-group? The VPN connection was confiigured on ASA5505 before me, but no login details were left.

Thanks

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Hall of Fame Guru

Can you log into the ASA at all? If so, go into an ssh session, enter enable mode and read the configuration using the command:

     more system:running-config

You can also get a backup from the ASDM GUI that will also provide this information. Either method will provide VPN PSKs in plain text. Local user passwords will not be shown. If those are lost, they will have to be created anew.

If you cannot log into the ASA at all, you will have to perform password recovery procedure. Cisco has a procedure for this here. Once you've done that, proceed as advised above.

View solution in original post

3 REPLIES 3
Highlighted
Hall of Fame Guru

Can you log into the ASA at all? If so, go into an ssh session, enter enable mode and read the configuration using the command:

     more system:running-config

You can also get a backup from the ASDM GUI that will also provide this information. Either method will provide VPN PSKs in plain text. Local user passwords will not be shown. If those are lost, they will have to be created anew.

If you cannot log into the ASA at all, you will have to perform password recovery procedure. Cisco has a procedure for this here. Once you've done that, proceed as advised above.

View solution in original post

Highlighted

Hi Marvin.

Yes, that command I was looking for.

Now I can see pre-shared keys instead of *. User's passwords are still encrypted, but I can create new ones if needed.

Is there some handy source showing some handy commands for firewall and router like show, debug, etc.? Or everybody creates their own ones.

Thanks for your reply.

Highlighted

You're welcome.

I mostly use the official guides (and download local copies of the latest plus 8.2 guides for when I'm offline):

ASA Configuration Guides

ASA Command References

Those plus experience = expertise.

Please mark this question as answered and rate if it helped you.

Content for Community-Ad