Re: Retrieve WLAN password from WLC

Martin Smid · ‎10-14-2011

Hi,

I have been wondering whether we can retrieve a lost WPA password from our WLC.

All I see int he config is

wlan security static-wep-key encryption 4 104 <mode unknown> <passwd hidden> 1

Any ideas?

pcroak · ‎10-14-2011

Hello Martin,

We have a procedure to retrieve WEP keys from the WLC, however we cannot retrieve WPA keys. We use a stronger encryption algorithm for WPA which prevents a simple retrieval process.

You might have a wireless client that has the option to "show key" in the wireless profile that could help here, but unfortunately if the key has been lost you may need to re-configure it.

-Pat

Martin Smid · ‎10-17-2011

Hey Pat,

thank you for the info. Can you please share a link to a Cisco website with me for the procedure? All I find is password recovery for WLC. It might not help with this particular case, but might come in handy in the future.

Thank you,

Martin

pcroak · ‎10-17-2011

Hi Martin,

I don't think we have any documentation for the WEP recovery procedure, I will outline the steps for you quickly, but this will only work for WEP:

From the WLC CLI:

config passwd-cleartext enable

config switchconfig secret-obfuscation disable

Then, upload your configuration file via tftp/file upload (this will take longer than normal config uploads, need to be running WLC 6.0/7.0 I believe).

When you open your configuration file, the WEP key will be listed in the command, the relevant portion is the leading HEX section before all of the zeros. You can convert those hex values to ascii if desired.

-Pat

George Stefanick · ‎10-17-2011

Pat -- Great post!

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

Pedro Prado · ‎09-02-2014

This procedure saved me from having to retype 223 passwords for local net users, on an upgrade, as the encrypted format one controller exported was not accepted by the newer controller.

Thanks. Really!

George Stefanick · ‎10-15-2011

WPA / WPA2 PSK can be broken with CowPatty. It's based on a dicionary attack. With that being said you could spend forever trying to crack it ...

Oh, and BTW.. If you used PSK with windows zero config, I understand the PSK sits in the registration.

"Satisfaction does not come from knowing the solution, it comes from knowing why." - Rosalind Franklin
___________________________________________________________

Martin Smid · ‎10-17-2011

Hi George,

yeah, I have been thinking about trying to crack the password. The WLAN is unfortunately not used by PCs, but Cisco wi-fi phones. And they are manually configured. The person responsible lost the password so we are trying to help out.

Cheers,

Martin

Zar Ni Lay Thwin · ‎11-28-2013

Any luck of retireveing key for WPA2 from WLC?

I am having that issue as no body know what is the key being used.

Leo Laohoo · ‎11-28-2013

Any luck of retireveing key for WPA2 from WLC?

I am having that issue as no body know what is the key being used.

The keys cannot be retrieved. It's encrypted.

You'll need to find someone who can hack it.

Zar Ni Lay Thwin · ‎11-28-2013

Thanks for advice Leo

Scott Fella · ‎11-28-2013

Your better off getting that info from a windows 7 machine if one is configured for it. Windows 7 allows you to view the preshared key.

Sent from Cisco Technical Support iPhone App

-Scott
*** Please rate helpful posts ***

Zar Ni Lay Thwin · ‎11-28-2013

Problem is it is used for Cisco Wireless Phones.

No PC is ever connected to it.

Scott Fella · ‎11-28-2013

Sorry, but there is no way to retrieve the preshared key.

Thanks,

Scott

Help out other by using the rating system and marking answered questions as "Answered"

-Scott
*** Please rate helpful posts ***

Zar Ni Lay Thwin · ‎11-28-2013

Thank you Scott for confirmation.