Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Hardening ASA

Hello,

IS there steps on cisco site on

How to harden ASA and avoid password recovery..

1 REPLY

Re: Hardening ASA

hi there

Cisco ASA can disable the password recovery process, This ensures that even if an unauthorized user gets access to the console port, they should not be able to compromise the device or configuration settings

Use the:

no service password-recovery

command to disable password recovery from configuration mode

this is how to enter the command and the warring will apear:

ASA(config)# no service password-recovery

WARNING: Executing "no service password-recovery" has disabled the password recovery

mechanism and disabled access to ROMMON. The only means of recovering from lost or

forgotten passwords will be for ROMMON to erase all file systems including

configuration files and images. You should make a backup of your configuration and

have a mechanism to restore images from the ROMMON command line

good luck

if helpful Rate

552
Views
0
Helpful
1
Replies