cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
540
Views
0
Helpful
8
Replies
Beginner

Reset CLI admin password from CLI

Hi Experts,

I am quite new to ISE, I have access to ISE cli using a user account having role admin.

I tried to set username admin with our standard password, But I cannot login using, username admin and this password from the cli.

I see it is required to boot from iso to set the admin password. Does it required even to reset the ''admin'' username even after i can access the cli.

Appreciate your response on this.

Thanks

rYs

 

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Hi riyasrasheed,I tested this

Hi riyasrasheed,

I tested this on my ISE 1.3 version and it worked well. My understanding of the issue is , you were not able to change the password of default Admin user by logging into CLI with another user who had admin role.

 

I tested this on my ISE 1.3 version and it worked well for me. With the ISO image you can only change the password of  admin users but you cannot change the usernames.

 

Thanks,

Naresh

 

8 REPLIES 8
Cisco Employee

Hi riyasrasheed,I tested this

Hi riyasrasheed,

I tested this on my ISE 1.3 version and it worked well. My understanding of the issue is , you were not able to change the password of default Admin user by logging into CLI with another user who had admin role.

 

I tested this on my ISE 1.3 version and it worked well for me. With the ISO image you can only change the password of  admin users but you cannot change the usernames.

 

Thanks,

Naresh

 

Beginner

Hi Naresh,Yes, I have

Hi Naresh,

Yes, I have username which has admin role, So i can login using that username to the box.

I also can create username admin and password, but while I tried to login using admin and password, I cannot.

Also see the admin password is showing as plain text, even after I gave the hash command while creating the username.

Now I don't have a username admin, So I am trying to create one, but its not working.

Is there any limitation in the number of admin role can create ?

 

Thanks

Cisco Employee

Hi riyasrasheed,May be the

Hi riyasrasheed,

May be the encrypted password is not working that great. Can you create an admin user  with plain password and the try logging with that user and password. As such there is no limitation on the number of admin user creation I know of.

Thanks,

Naresh

Beginner

HI,I tried using plain

HI,

I tried using plain password for username admin and while I try to login, i am getting these mesaages, and need ctrl+c to stop it..

 

You are not the owner of /var/run/screen/S-admin.
You are not the owner of /var/run/screen/S-admin.
You are not the owner of /var/run/screen/S-admin.
You are not the owner of /var/run/screen/S-admin.
You are not the owner of /var/run/screen/S-admin.

Highlighted
Cisco Employee

Hi riyasrasheed,Can you

Hi riyasrasheed,

Can you please confirm the version of ISE you are using. For me this seems to be an issue with permission for that specific user. You are likely hitting the defect CSCuo75872 and it is fixed in ISE 1.3 version.

Can you please raise a TAC case.

Thanks,

Naresh

Beginner

HI,The version is 1.2.0.899,

HI,

The version is 1.2.0.899, Do we need an iso image to boot to reset the admin account,

This was running in a VM and we lost the passowrd, After resetting the vm root passrd we manage to get access to the box.

 

Cisco Employee

Hi riyasrasheed,With the ISO

Hi riyasrasheed,

With the ISO image you can only reset the password of Admin user. You cannot repair the admin user if permissions to this admin user are lost.

The way we can repair the admin user permission is by logging to the ISE node with Root Patch and traversing to the patch /var/run/screen and executing the command

chown <username> /var/run/screen/S-admin

Thanks,

Naresh

Beginner

Hi, I am just using this ISE,

Hi, I am just using this ISE, So my knowledge is limited to tshoot any issues for now.

I hope u might know the issue I wnat to resolve.

Can you advice whats the solution for this issue ?

I cannot provide my user acct to all, need to have a standard username, So others can access the device using this username. So we need to have admin username.

Kindly advice.

Thanks