cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
16890
Views
35
Helpful
5
Replies

Changing Security Password CUCM 10.5

I need changing security password cluster cucm 10.5.  I used the procedure below.
After restart the system and tryed to access CUCM by browser, displays this error.  "Database communication error"

 

 

Reset OS Administrator and Security Passwords

To reset a password, you must connect to the system through the system console. You cannot reset a password when you connect to the system through a secure shell session.


Note
 

During this procedure, you must remove and then insert a valid CD or DVD in the disk drive to prove that you have physical access to the system.


Procedure
Step 1  Log in to the system with the following username and password:
  • Username: pwrecovery
  • Password: pwreset

    The Welcome to platform password reset window appears.

Step 2  Press any key to continue.
Step 3  If you have a CD or DVD in the disk drive, remove it now.
Step 4  Press any key to continue.

The system tests to ensure that you removed the CD or DVD from the disk drive.

Step 5  Insert a valid CD or DVD into the disk drive.
Note   

For this test, you must use a data CD, not a music CD. The system tests to ensure that you have inserted the disk.

Step 6  After the system verifies that you have inserted the disk, you are prompted to enter one of the following options to continue:
  • Enter a to reset the Administrator password.
  • Enter s to reset the security password.
  • Enter q to quit.
Step 7  Enter a new password of the type that you chose.
Step 8  Reenter the new password.

The password must contain at least six characters. The system checks the new password for strength. If the password does not pass the strength check, you are prompted to enter a new password.

Step 9  After the system verifies the strength of the new password, the password is reset. You are prompted to press any key to exit the password reset utility.

 

Would anyone have any tips that can help me.

 

1 Accepted Solution

Accepted Solutions

Rob Huffman
Hall of Fame
Hall of Fame

Hi Ronaldo,

 

Just to add a note to the good tips from Tony (+5)

 

You may be hitting one of these CUCM 10.5 bugs;

 

CUCM 10.5.2 security password recovery causes DB to not start at reboot
CSCus13276

 

Symptom:
"A Cisco DB" service will not start. CCMAdmin login attempts result in "Database communication error".

Conditions:
Executing a security password recovery on 10.5.x by logging in as pwrecovery / pwreset from the VM console then rebooting the system.

Workaround:
Two ways to recover the system:

1) Run "set password user security" from the admin CLI and change the security password again (with the old security password being the one set during the last security password recovery), then reboot the node.

OR

2) Set SELinux to permissive (run "utils os secure permissive" from the admin CLI), Do another security password recovery (logging in as pwrecovery / pwreset from the VM console), then reboot the node.

 

 

 

DB service is down, after changing the security password on CUCM 10.5
CSCup30002

 

Symptom:
A Cisco DB service will not start after changing security password..

Conditions:
Observed on CUCM servers running version 10.x and when security password is changed via console using password recovery procedure.

Workaround:
Selinux must be in permissive mode.

via admin>utils os secure permissive

in 10.5 when replication has broken, A Cisco DB will need to be stopped and started, and Cisco Database Monitor will shut itself off on all nodes. This will need to be restarted.

 

Cheers!

Rob

View solution in original post

5 Replies 5

tonyperla
Spotlight
Spotlight

Hello Ronaldo,

I believe the command for the security password is "set password user security"  You will have to enter the old and new passwords and you will have to complete this on all the nodes within your cluster.

 

Hope this helps!

Tony

Please rate helpful posts

Please rate helpful posts
Thanks,
Tony

[+5] to Rob for sharing info.

 

regds,

aman

Rob Huffman
Hall of Fame
Hall of Fame

Hi Ronaldo,

 

Just to add a note to the good tips from Tony (+5)

 

You may be hitting one of these CUCM 10.5 bugs;

 

CUCM 10.5.2 security password recovery causes DB to not start at reboot
CSCus13276

 

Symptom:
"A Cisco DB" service will not start. CCMAdmin login attempts result in "Database communication error".

Conditions:
Executing a security password recovery on 10.5.x by logging in as pwrecovery / pwreset from the VM console then rebooting the system.

Workaround:
Two ways to recover the system:

1) Run "set password user security" from the admin CLI and change the security password again (with the old security password being the one set during the last security password recovery), then reboot the node.

OR

2) Set SELinux to permissive (run "utils os secure permissive" from the admin CLI), Do another security password recovery (logging in as pwrecovery / pwreset from the VM console), then reboot the node.

 

 

 

DB service is down, after changing the security password on CUCM 10.5
CSCup30002

 

Symptom:
A Cisco DB service will not start after changing security password..

Conditions:
Observed on CUCM servers running version 10.x and when security password is changed via console using password recovery procedure.

Workaround:
Selinux must be in permissive mode.

via admin>utils os secure permissive

in 10.5 when replication has broken, A Cisco DB will need to be stopped and started, and Cisco Database Monitor will shut itself off on all nodes. This will need to be restarted.

 

Cheers!

Rob

Thanks for your help.

Richard Simmons
Level 3
Level 3

Does this also let you change the OS Admin username? it was possible on previous versions via:

 utils reset_ui_administrator_name

but i don't see that command in CUCM 10.5