Q: I have forgotten my username and password as well as my privileged (i.e. enable) password. Is there a way to recover them?
Recovering passwords requires direct physical access to a unit. This procedure cannot be performed remotely over Telnet, SSH, or the Web GUI. First, connect a straight through serial cable to the console port of the unit. Second, configure a VT100 session (i.e. HyperTerminal or ProComm) using the following settings: 9600 bps, 8 bits, no parity, 1 stop bit and no flow control. Lastly, reboot the unit by removing the power. As the unit boots, you will be given the opportunity to break into bootstrap mode by pressing the ESC key within 5 seconds. While in the monitor mode issue the following commands:
Bootstrap# bypass passwords
Bootstrap# boot Notice that you are issuing the boot command not the reload command following the bypass passwords command. Once the unit has finished booting up, you can issue the enable command and you will not be required to enter the privileged (i.e. enable) password. Once you are in privileged mode, you can view the configured passwords by using the show run command. A new password can also be entered by going into global configuration mode by using config terminal command and issuing the enable password <word> command where <word> is the new password. Also remember to change any Telnet, SSH or Web GUI passwords if necessary.
Below is a sample output of these steps:
Router (1200990L1) Executing bootstrap... ram: 268435456 bytes of RAM detected. Serial Number: LBADTNXXXXXXXXX Bootstrap version: 11.03.00, checksum: 0F3C, Thu Feb 09 17:40:34 2006 vfs: NONVOL: 120 tracks, 128 sectors/track, 1024 bytes/sector. eth0/1: initializing... eth0/1: MAC address is 00:A0:C8:XX:XX:XX bootstrap: Checking boot configuration... bootstrap: Primary image is 'NONVOL:/NV5305A-12-01-07b-E.biz'. bootstrap: User escaped to command line interface. cli: starting command line interface... cli: starting user interface
Press '?' for help. bootstrap#bypass passwords bootstrap#boot
NOTE: After performing this procedure, the unit will have bypassed passwords and there will be no console or enable mode password until a reboot has occurred.