Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

removing the configuration asa5520

I want to put the asa5520 to the factory defoult please let me know how to do that. how to remove the configuration file from it.

please help me i am not able to do that. Thanks.

  • Other Security Subjects

Re: removing the configuration asa5520

can anyone help me. i am still waiting

New Member

Re: removing the configuration asa5520

I`m not sure you can push this back to the factory default, however to completely remove the configuration, do the following:


Conf t

write erase

Confirm the erase, and then reload the device via reload (do not save the configuration).

If the device has a CSC-SSM module, then theres a reset factory defaults on the menus of the module (type Session 1 from the ASA)

New Member

Re: removing the configuration asa5520


To reset the ASA to factory defaults, do this:

conf t

clear configure all


This should set the device to its original state; it should also preserve the default inspection policy.

Re: removing the configuration asa5520


After do this procedure my ASA 5520 loose any thing and it´s not avaliable the option nameif and ip address in all interfaces.

I just have this option to set up in all interfaces:

ASA01(config)# interface gigabitEthernet 0/0

ASA01(config-if)# ?

Interface configuration commands:

  default      Set a command to its defaults

  description  Interface specific description

  dhcp         Configure parameters for DHCP client

  duplex       Configure duplex operation

  exit         Exit from interface configuration mode

  flowcontrol  Configure flowcontrol operation

  help         Interactive help for interface subcommands

  no           Negate a command or set its defaults

  shutdown     Shutdown the selected interface

  speed        Configure speed operation

ASA01(config-if)# no shut

The actual running-config is:

ASA01# sh run

: Saved


ASA Version 8.2(5)


hostname ASA01


enable password .... encrypted

no mac-address auto


interface GigabitEthernet0/0

duplex full


interface GigabitEthernet0/1


interface GigabitEthernet0/2


interface GigabitEthernet0/3



interface Management0/0


class default

  limit-resource All 0

  limit-resource ASDM 5

  limit-resource SSH 5

  limit-resource Telnet 5


boot system disk0:/asa825-k8.bin

ftp mode passive

pager lines 24

no failover

asdm image disk0:/asdm-711.bin

no asdm history enable

arp timeout 14400

console timeout 0

admin-context admin

context admin


username cisco password xxxxxx encrypted privilege 15

prompt hostname context

no call-home reporting anonymous


profile CiscoTAC-1

  no active

  destination address http

  destination address email

  destination transport-method http

  subscribe-to-alert-group diagnostic

  subscribe-to-alert-group environment

  subscribe-to-alert-group inventory periodic monthly

  subscribe-to-alert-group configuration periodic monthly

  subscribe-to-alert-group telemetry periodic daily


: end

Somebody what´s happens?


Re: removing the configuration asa5520

Hello again,

Resolved...  before of restore, this ASA was with HA enable. I just change it to  mode single, reboot and it back to work normaly. The commands used was:


ASA01(config)# mode ?

configure mode commands/options:

  multiple   Multiple mode; mode with security contexts

  noconfirm  Do not prompt for confirmation

  single     Single mode; mode without security contexts

ASA01(config)# mode single

WARNING: This command will change the behavior of the device

WARNING: This command will initiate a Reboot

Proceed with change mode? [confirm]

Security context mode: single


*** --- SHUTDOWN NOW ---


ASA01(config)# int gi 0/0

ASA01(config-if)# ?

Interface configuration commands:

  authentication   authentication subcommands

  ddns             Configure dynamic DNS

  default          Set a command to its defaults

  delay            Specify interface throughput delay

  description      Interface specific description

  dhcp             Configure parameters for DHCP client

  duplex           Configure duplex operation

  exit             Exit from interface configuration mode

  flowcontrol      Configure flowcontrol operation

  hello-interval   Configures EIGRP-IPv4 hello interval

  help             Interactive help for interface subcommands

  hold-time        Configures EIGRP-IPv4 hold time

  igmp             IGMP interface commands

  ip               Configure ip addresses.

  ipv6             IPv6 interface subcommands

  mac-address      Assign MAC address to interface

  management-only  Dedicate an interface to management. Block thru traffic

  mfib             Interface Specific MFIB Control

  multicast        Configure multicast routing

  nameif           Assign name to interface

  no               Negate a command or set its defaults

  ospf             Configure interface specific OSPF parameters

  pim              PIM interface commands

  pppoe            Configure parameters for PPPoE client

  rip              Configure interface specific RIP parameters

  security-level   Specify the security level of this interface after this

                   keyword, Eg: 0, 100 etc. The relative security level between

                   two interfaces determines the way the Adaptive Security

                   Algorithm is applied. A lower security_level interface is

                   outside relative to a higher level interface and equivalent

                   interfaces are outside to each other

  shutdown         Shutdown the selected interface

  speed            Configure speed operation

  split-horizon    Configures EIGRP-IPv4 split-horizon

  summary-address  Configures EIGRP-IPv4 summary-address



This widget could not be displayed.