×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Recover passwords without losing config

Answered Question
Oct 14th, 2008
User Badges:

Hi,

We have a new client and have taken over a leased line with 2 x 1603 ISDN routers.

We don't know the passwords and would like to recover/replace those without losing any settings. I have found these instructions: http://www.cisco.com/en/US/products/hw/routers/ps214/products_password_recovery09186a0080093e11.shtml#NetPro but am not clear on whether any config will be lost.

Is it possible to save the config to an external device to make sure ?

Also are there any other passwords I should be aware of ?


Many thanks


PC

Correct Answer by Jon Marshall about 8 years 10 months ago

Philip


You won't be telnetting onto the router rather you should be doing this with a console cable connected from a com port on your laptop to the console port on the router.


The password receovery procedure in your doc assumes you have no passwords so it shows you how to bypass all passwords - thats what the bit about hitting the break key and going to ROMMON is all about.


When you do get in and reset the enable password you should also reset the line password (which is used for remote telnet access) eg.


router(config)# line vty 0 4

router(config-line)# password 0


Jon

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Jon Marshall Tue, 10/14/2008 - 10:22
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Philip


Pay particular attention to step 9 as cut and paste below.


=============================================

Type configure memory or copy startup-config running-config in order to copy the nonvolatile RAM (NVRAM) into memory.


Important: Do not type copy running-config startup-config or write. These commands erase your startup configuration

=============================================


Step 9 is where you could lose your config. Otherwise you will be fine. If you want to you can copy your configuration to tftp server before doing the password recovery but you need to be in enable mode to do this so it's a bit of a catch 22.


Jon

Jon Marshall Tue, 10/14/2008 - 11:11
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

No problem, hope it goes okay.

philipcase Wed, 10/15/2008 - 06:44
User Badges:

Hi,

I have seen reference to a "Login" password and "Enable" password on ConfigMaker for this router.

However this recovery procedure talks only about the Enable password.

Will I need a Login password so I can telnet through the admin port to follow this password recovery procedure ?


Many thanks

Correct Answer
Jon Marshall Wed, 10/15/2008 - 06:48
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Philip


You won't be telnetting onto the router rather you should be doing this with a console cable connected from a com port on your laptop to the console port on the router.


The password receovery procedure in your doc assumes you have no passwords so it shows you how to bypass all passwords - thats what the bit about hitting the break key and going to ROMMON is all about.


When you do get in and reset the enable password you should also reset the line password (which is used for remote telnet access) eg.


router(config)# line vty 0 4

router(config-line)# password 0


Jon

philipcase Wed, 10/15/2008 - 07:02
User Badges:

Hi Jon,


Sorry - I meant what you said - booting the router with the laptop connected using a terminal session via serial cable.


After I reset both passwords will I be able to use ConfigMaker to download the full config ? I need to be able to back it up in case it's ever lost.


Thanks again

Jon Marshall Wed, 10/15/2008 - 07:08
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Philip


Don't know what ConfigMaker is. You can save the config using a tftp server as previously covered or you can use hyperterminal to capture the screen output and then just do a "sh run".


Jon

philipcase Wed, 10/15/2008 - 07:42
User Badges:

Thanks for that Jon.

Do you mind me asking if you can recommend a USB-serial adapter that will work with the Cisco management port ?

I've seen reports that some don't work.


Thank you

Jon Marshall Wed, 10/15/2008 - 08:45
User Badges:
  • Super Blue, 32500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Sorry Philip but i have always kept an old laptop with a com port on the back so i don't have to use the USB-serial adapter.


At the last place i worked our engineers experienced problems with them (can't remember which type) so i never bothered moving across to them.


Others should be able to help if you perhaps post a separate question.


Jon

philipcase Wed, 10/15/2008 - 09:57
User Badges:

Hi Jon,

I'll try to source a laptop with com port just in case.


Thanks for all of your help on this.

philipcase Mon, 10/20/2008 - 13:16
User Badges:

Hi Jon,

I managed to get onsite and downloaded the IOS commands from each router.

I made up a cable and got hold of an old laptop.

There are some elements of the config that aren't very clear to me, relating to IP addresses and bridge commands.

Are you aware of anywhere I could post queries of this nature with edited sections of the IOS listings for feedback ?


Many thanks

Actions

This Discussion