Please bear with me. I noticed several topics along the lines of password recovery for a 2811 router and do not mean to ask a redundant question. I've followed the .pdf instructions and the router will reboot as normal every time. I manage to get to the rommon 1> and when I initially entered the confreg command as outlined in the password recovery steps it would not recognize the confreg command. I ended up typing a ? and all the avaialble commands listed... after the commands listed, the CLI would allow me to type confreg 0x2142 which resulted in a message "need to reload or power cycle" (or something to that effect). After typing the reset, the 2811 reloads, but reboots to normal condition. I tried the confreg 0x102 method and got the same result. After several attempts, it seems like the procedure is not working. So how can I simply default the router and start from scratch if the recovery procedure fails?
Solved! Go to Solution.
Thank you for the input George! just to confirm, from rommon 1 > type write erase enter then rommon 2 > reload ?
went in again and when I got to the enable # prompt, I pulled a show run after copy startup-config running-config and it listed the new users w/privilege level 15 that i inserted, but neither of the passwords take at the
User Access Verification
... the pdf mentions something about the possibility that some routers have the config register at 0x102 instead of 0x2102 - could this be the case here and will it break anything if I set the config-register to 0x102 once I'm in the enable mode???
went throught steps again and double checked the pdf and got to the part:
Configuration register is 0x2142 (will be 0x2102 at next reload)
but when the router reloads, same thing:
User Access Verification
Can you try the below:-
please rate all useful information
Shut down the router.
Remove the compact flash that is at the back of the router.
Power on the router.
Once the Rommon1> prompt appears, enter this command:
Insert the compact flash.
Type reset. /you forget to type reset/
When you are prompted to enter the initial configuration, type No, and press Enter.
At the Router> prompt, type enable.
At the Router# prompt, enter the configure memory command, and press Enter in order to copy the startup configuration to the running configuration.
Use the config t command in order to enter global configuration mode.
Use this command in order to create a new user name and password:
router(config)#username cisco privilege 15 password cisco
Use this command in order to change the boot statement:
Use this command in order to save the configuration:
Reload the router, and then use the new user name and password to log in to the router.
thank you both for the input... indeed the cisco privilege 15 step is already in there... I think George got it... I will try this again - question: can I type: no enable password once in exec mode to avoid this step in the future? When i did a show run, I saw a enable 5 - is this what I'm getting stuck at? It would be easier to remove this step altogether... please advise
Thats correct, you are getting stuck at the enable 5 password. If you remove it, you wont be able to telnet/ssh back in, i would recommend you set something for both username/password and enable secret and should be set.
Thank you for the confirmation... so I'm back at the exec and typed:
enable secret 5 password cisco
and it gave me the following error... " the secret you entered is not a valid encrytped secret. to enter an unencrypted secret, do not specify type 5 ...
so if i type the following command at the # prompt: enable secret password cisco - will this clear it and allow me to sign in with cisco the next time around?
Thank you so much with bearing with my learning process!
i don't get it... :) it is still asking for the User Access Verification and will not accept cisco as the password... if I type no enable secret 5 and no enable secret ... will it allow me to console in as I am right now and then add telnet?
here you go (thank you)
yes sir, my goodness... need to hit the books... this is going to be a lab router for this exact purpose
thank you so much for your help... cleared the passwords in the vty 0 4 & con 0 and this did it!!
if you may allow me 1 more question... this router has an ATM AIM - can this be used to conifgure a PRI and a 4 port FXO card... I understand that DSPs are needed, but don't know if the resources on an AIM ATM module can substitute...
thank you again for your patience and help with this!
Ok, i think you got further, right now its prompting for the enable password. Please reset that as well with the command enable password <pwd>. You will have to go through the same cycle once more and then reset the enable password along with the username/password :(
George, if found the .pdf
and it mentions the write erase command, however it seems to require exec access, which is my initial trouble... is there another workaround that will result in the router being defaulted to factory... thank you again!
Not that I know of. The ROMMON process is your way out. Maybe your current config is in 0x2142, try changing it to 0x2102.
ok, I'll try it...
Hi George, well i got into rommon and using confreg 0x2142, it allowed me to get to enable mode and I continued with the pdf instructions (both methods) and same thing... when it reloads, it displays
User Access Verification
when I enter the new password cisco, it will not take... is there something else I can do once in enable mode? to change this?