Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
10542
Views
0
Helpful
3
Replies

2821 PASSWORD RECOVERY DISABLED

Go to solution
Tom Looyer
Level 1
Level 1

‎11-18-2012 06:58 PM - edited ‎03-09-2019 11:57 PM

Hi All,

I have just purchased a second hand Cisco 2821. There is a password set and password recovery functionality is disabled.

A bit of searching around shows that you can reset the router to factory default configuration by pressing break at the correct time.

My problem is, this process does not work. I press break and get the factory reset prompt, I press "y" but the router just continues to load the startup configuration.

See output below...

System Bootstrap, Version 12.3(8r)T7, RELEASE SOFTWARE (fc1)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 2004 by cisco Systems, Inc.

Initializing memory for ECC

.

c2821 processor with 262144 Kbytes of main memory

Main memory is configured to 64 bit mode with ECC enabled

Readonly ROMMON initialized

PASSWORD RECOVERY FUNCTIONALITY IS DISABLED

program load complete, entry point: 0x8000f000, size: 0xc5a0

Initializing ATA monitor library.......

program load complete, entry point: 0x8000f000, size: 0xc5a0

Initializing ATA monitor library.......

program load complete, entry point: 0x8000f000, size: 0x196b438

Self decompressing the image : ######################################################################################################################################################################################################################################################################################### [OK]

Smart Init is enabled

smart init is sizing iomem

  ID            MEMORY_REQ                 TYPE

0003E8          0X003DA000 C2821 Mainboard

                0X000F3BB0 public buffer pools

                0X00211000 public particle pools

TOTAL:          0X006DEBB0

If any of the above Memory Requirements are

"UNKNOWN", you may be using an unsupported

configuration or there is a software problem and

system operation may be compromised.

Rounded IOMEM up to: 8Mb.

Using 3 percent iomem. [8Mb/256Mb]

              Restricted Rights Legend

Use, duplication, or disclosure by the Government is

subject to restrictions as set forth in subparagraph

(c) of the Commercial Computer Software - Restricted

Rights clause at FAR sec. 52.227-19 and subparagraph

(c) (1) (ii) of the Rights in Technical Data and Computer

Software clause at DFARS sec. 252.227-7013.

           cisco Systems, Inc.

           170 West Tasman Drive

           San Jose, California 95134-1706

Cisco IOS Software, 2800 Software (C2800NM-SPSERVICESK9-M), Version 12.3(11)T2, RELEASE SOFTWARE (fc1)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2004 by Cisco Systems, Inc.

Compiled Fri 29-Oct-04 00:40 by *****

Image text-base: 0x40073B98, data-base: 0x424C0000

                                                                                 <<<--- I press break here.

PASSWORD RECOVERY IS DISABLED.

Do you want to reset the router to factory default

configuration and proceed [y/n] ?                                  <<<--- I press "y" here.

Reset router configuration to factory default.

This product contains cryptographic features and is subject to United

States and local country laws governing import, export, transfer and

use. Delivery of Cisco cryptographic products does not imply

third-party authority to import, export, distribute or use encryption.

Importers, exporters, distributors and users are responsible for

compliance with U.S. and local country laws. By using this product you

agree to comply with applicable laws and regulations. If you are unable

to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to

export@cisco.com.

Cisco 2821 (revision 51.46) with 253952K/8192K bytes of memory.

Processor board ID FHK0911F1T4

2 Gigabit Ethernet interfaces

DRAM configuration is 64 bits wide with parity enabled.

239K bytes of non-volatile configuration memory.

62592K bytes of ATA CompactFlash (Read/Write)

% Warning: use /31 mask on non point-to-point interface cautiously

% Warning: use /31 mask on non point-to-point interface cautiously

Press RETURN to get started!

*Nov 19 02:14: 4110FF58 4110FF9C 410FCAD4 4203EB24 4203EB08

*Nov 19 02:14:27.559: %LINK-3-UPDOWN: Interface GigabitEthernet0/0, changed state to up

*Nov 19 02:14:27.559: %LINK-3-UPDOWN: Interface GigabitEthernet0/1, changed state to up

*Nov 19 2012 15:14:28.559 NZDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/0, changed state to down

*Nov 19 2012 15:14:28.559 NZDT: %LINEPROTO-5-UPDOWN: Line protocol on Interface GigabitEthernet0/1, changed state to down

*Nov 19 2012 15:14:28.843 NZDT: %SYS-5-CONFIG_I: Configured from memory by console

*Nov 19 2012 15:14:29.068 NZDT: %SYS-5-RESTART: System restarted --

Cisco IOS Software, 2800 Software (C2800NM-SPSERVICESK9-M), Version 12.3(11)T2, RELEASE SOFTWARE (fc1)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2004 by Cisco Systems, Inc.

Compiled Fri 29-Oct-04 00:40 by *****

*Nov 19 2012 15:14:29.072 NZDT: %SNMP-5-COLDSTART: SNMP agent on host router1 is undergoing a cold start

   !       UNAUTHORISED ACCESS IS STRICTLY PROHIBITED        !

User Access Verification

Password:

Password:

Password:

% Bad passwords

1 person had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎11-18-2012 07:07 PM 

There is a password set and password recovery functionality is disabled.

The process works because I've used it several times.  The reason why it won't work for you is possibly due to the way your client sends out the "Ctrl+Break" across.  This is very evident when you are using a USB-to-serial dongle.

Another thing, it will significantly help alot if you first EJECT the CF so the router will go to ROMmon if your attempts to break fails.

View solution in original post

0 Helpful
3 Replies 3

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame

‎11-18-2012 07:07 PM 

There is a password set and password recovery functionality is disabled.

The process works because I've used it several times.  The reason why it won't work for you is possibly due to the way your client sends out the "Ctrl+Break" across.  This is very evident when you are using a USB-to-serial dongle.

Another thing, it will significantly help alot if you first EJECT the CF so the router will go to ROMmon if your attempts to break fails.

0 Helpful

Go to solution
Tom Looyer
Level 1
Level 1
In response to Leo Laohoo

‎11-18-2012 07:31 PM

Hi Leolaohoo,

Thanks for your quick reply.

I took out the CF, started the router up, issued a break key.

Re-inserted CF (so the router has an IOS to load from when it resets).

I typed "confreg 2142" followed by "reset" and the router reloaded with the default configuration.

This probably would have worked with the CF inserted, I just didn't realise I had to do this step after factory resetting the router as above.

I thought I couldn't edit the rommon while the password recovery service was disabled.

Thanks for your help.

0 Helpful

Go to solution
Leo Laohoo
Hall of Fame
Hall of Fame
In response to Tom Looyer

‎11-19-2012 01:26 PM 

This probably would have worked with the CF inserted, I just didn't realise I had to do this step after factory resetting the router as above.

LOL.

Don't worry.  Alot of ISR G1 and G2 users didn't realize this either.  Unfortunately, Cisco documenation doesn't help either.

Thanks for the ratings and glad to see you were able to get it sorted out.

0 Helpful
Customers Also Viewed These Support Documents