I have been wondering whether we can retrieve a lost WPA password from our WLC.
All I see int he config is
wlan security static-wep-key encryption 4 104 <mode unknown> <passwd hidden> 1
We have a procedure to retrieve WEP keys from the WLC, however we cannot retrieve WPA keys. We use a stronger encryption algorithm for WPA which prevents a simple retrieval process.
You might have a wireless client that has the option to "show key" in the wireless profile that could help here, but unfortunately if the key has been lost you may need to re-configure it.
thank you for the info. Can you please share a link to a Cisco website with me for the procedure? All I find is password recovery for WLC. It might not help with this particular case, but might come in handy in the future.
I don't think we have any documentation for the WEP recovery procedure, I will outline the steps for you quickly, but this will only work for WEP:
From the WLC CLI:
config passwd-cleartext enable
config switchconfig secret-obfuscation disable
Then, upload your configuration file via tftp/file upload (this will take longer than normal config uploads, need to be running WLC 6.0/7.0 I believe).
When you open your configuration file, the WEP key will be listed in the command, the relevant portion is the leading HEX section before all of the zeros. You can convert those hex values to ascii if desired.
Pat -- Great post!
This procedure saved me from having to retype 223 passwords for local net users, on an upgrade, as the encrypted format one controller exported was not accepted by the newer controller.
WPA / WPA2 PSK can be broken with CowPatty. It's based on a dicionary attack. With that being said you could spend forever trying to crack it ...
Oh, and BTW.. If you used PSK with windows zero config, I understand the PSK sits in the registration.
yeah, I have been thinking about trying to crack the password. The WLAN is unfortunately not used by PCs, but Cisco wi-fi phones. And they are manually configured. The person responsible lost the password so we are trying to help out.
Your better off getting that info from a windows 7 machine if one is configured for it. Windows 7 allows you to view the preshared key.
Sent from Cisco Technical Support iPhone App
Sorry, but there is no way to retrieve the preshared key.
Help out other by using the rating system and marking answered questions as "Answered"