Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3322
Views
5
Helpful
3
Replies

RESOLVED: Cannot login to Cisco ASA 5516

Go to solution
Andrew.Ford1
Level 1
Level 1

‎03-07-2017 02:41 AM - edited ‎03-12-2019 02:01 AM

When I try to login to ASDM I get the following:

----

ASDM is not able to access asdm_handler service on device x.x.x.x

It is likely that the user password has expired or the maximum number of sessions has been exceeded on that device.

----

I can not SSH to it either so I guess the password has expired, how do I get in to change it?

2 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Andrew.Ford1

‎03-07-2017 02:36 PM

Pick your experts carefully. :)

Your configuration is safe as long as you haven't also enabled the "no service password-recovery" feature. If you have that feature turned on as well then your situation will unfortunately require erase of the configuration to regain access to the device.

Perhaps when you regain access you should consider a regular backup scheme.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-07-2017 03:55 AM

I do not recommend using the password expiration feature on ASAs with local user database only for just this reason. You get no warning of an expiring password nor way to see how long a given credential has until the password expires.

If you do not have another valid username / password combination, you will have to peform an ASA password recovery. That process requires a reload of the firewall and console access.

The password recovery process is described here:

https://supportforums.cisco.com/document/79016/asa-password-recovery

Go to solution
Andrew.Ford1
Level 1
Level 1
In response to Marvin Rhoads

‎03-07-2017 08:52 AM

Thank you Marvin, I wish I'd known this before I was advised to use the feature by a security expert...

Will the process wipe my config? as I do not believe there is an up-to-date backup!

0 Helpful

Go to solution
Marvin Rhoads
Hall of Fame
Hall of Fame
In response to Andrew.Ford1

‎03-07-2017 02:36 PM

Pick your experts carefully. :)

Your configuration is safe as long as you haven't also enabled the "no service password-recovery" feature. If you have that feature turned on as well then your situation will unfortunately require erase of the configuration to regain access to the device.

Perhaps when you regain access you should consider a regular backup scheme.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card