Remove password from config file

rvangelder1 · ‎03-12-2025

Hey.

I have a few CBS switches on a site but the saved passwords no longer work. I have the config files backed up.

I see in the text file a line for the login name and an encrypted password. If I delete this line and then load it to a factory defaulted switch, will it then require the default login on first boot?

Thanks

Dustin Anderson · ‎03-12-2025

So, if I'm understanding, you want to delete that line, then load the modified config into a default switch and not get a login.

Short answer is no, there is other config to require the login. I'm not sure what the switch would do with requiring the login with no account. Either not load the config, or flat out lock you out.

Now, what you can also look for in the config file is anything on the con 0 line for login command. you can also search for the word local in the config and probably find some aaa commands. some like these

aaa authentication login default group local

aaa authorization console

parickwarren1 · ‎03-12-2025

if you remove the line with the encrypted password from the config file and then load it onto a factory-defaulted switch, the switch should fall back to its default creds on the first boot.

Joseph W. Doherty · ‎03-12-2025

@rvangelder1 wrote:

I see in the text file a line for the login name and an encrypted password. If I delete this line and then load it to a factory defaulted switch, will it then require the default login on first boot?

Depends on what else is in the config.

There are multiple options for supporting login authentication, so just deleting one config line's login name and its password, might not be sufficient. (This is the point I believe @Dustin Anderson was making.)