Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
507
Views
0
Helpful
2
Replies

FWSM Production - Unable to get into 'Config t'

tech_trac
Level 1
Level 1

‎06-20-2009 06:59 AM - edited ‎03-11-2019 08:46 AM

Hello,

I am stuck in Production environment. I did some changes. And now I am not able to do 'config t' on FWSM. THe response is 'ERROR: Command authorization failed'

Currently, there are total of 3 users. One is privilege level 2 (admin) and other two belong to privilege level 5. No user for privilege level 15.

I get into FWSM via ssh directly or via ssh into 6500 and then sessioning into FWSM.

How can I retain the privilege level 15 on FWSM. I am not close to the 6500 so I have not tried direct console.

I have not saved the configurations. The last change I did was 'aaa authorization command LOCAL' while 'aaa authentiction enable console LOCAL' was already present. Since there was no user with privilege level 15, and the admin was on level 2, now I am restricted to everything.

The current user config is while doing sh run

username admin password xxxxx encrypted

enable password yyyyyy encrypted

Please assist.

Thanks

Labels:
0 Helpful
2 Replies 2

tech_trac
Level 1
Level 1
In response to new_networker

‎06-20-2009 11:37 AM

Thanks. Is there a way to recover from lock out situation without doing FWSM reboot.

I would like to avoid it since it is in Production.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card