Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Cisco ASA Enable Password

Hey,

I am trying to change the enable password on cisco ASA 5510.  I run enable password <password>.  I log off, and log back in with my username/password and type en, it asks for a password and enter the password that I just set but it does not work.

what am I missing?

Thanks

Everyone's tags (1)
6 REPLIES

Cisco ASA Enable Password

Are you using the local user database or a TACACS or RADIUS server to authenticate?

If using a TACACS or RADIUS server enter your user password when you type enable.  If that doesn't work disconnect the TACACS or RADIUS server and try to enter the enable password you created.

If using the local user database, are you sure that you are entering the password correctly?  Perhaps you typed it incorrectly when creating it and accidentally put a space at the begining or end?

If non of the above work then you will need to perform a password recovery:

  1. Reboot your ASA
  2. Press the Esc key to enter ROMON mode when prompted
  3. Change the configuration register value to 0x41 by using the command confreg 0x41
  4. To tell the ASA to ignor the startup configuration issue the command confreg
     Current Configuration Register: 0x00000041
     Configuration Summary: 
       boot default image from Flash
       ignore system configuration

     Do you wish to change this configuration? y/n [n]: y

    5.  At the prompt enter Y

    6.  Accept all default values when prompted

    7.  Reload the ASA by enter the command boot

    8.  When prompted enter enable and leave the password blank

    9.  Issue the command copy start run

  10.  Enter configuration mode configure terminal

  11.  Enter the command no config-register (the value is returned to its default value of 0x1)

  12.  Save your configuration copy run start

--
Please remember to rate and select a correct answer

--
Please remember to rate and select a correct answer
Community Member

Cisco ASA Enable Password

Hey, thank you for your reply.

I am using the local user database. 

Community Member

Cisco ASA Enable Password

I am still able to use my password to enter privlege exec mode so I can try and reset the en password again to make sure that I did not have a typo, still does not work.

Cisco ASA Enable Password

If you are able to log into the device, could you please post a full running config (sanitised).

--
Please remember to rate and select a correct answer

--
Please remember to rate and select a correct answer
Community Member

Cisco ASA Enable Password

I think I got it figured out...

once I removed this:

aaa authentication enable console LOCAL

I was able to change the enable password

Cisco ASA Enable Password

yes, that command tells the ASA to use your login user password also for the enable password.

Glad you got it figured out

--
Please remember to rate and select a correct answer

--
Please remember to rate and select a correct answer
1149
Views
0
Helpful
6
Replies
CreatePlease to create content