?
Solved

Reset password on PIX 501

Posted on 2007-11-13
16
Medium Priority
?
367 Views
Last Modified: 2012-05-05
How can I recover the password on a PIX 501?  I have the default password, and I had reset both the default and the admin password awhile back, and confirmed it, however now it is not working and I cannot recall the previous admin password.  I know almost nothing about working with PIX 501 and always use step-by-step instructions for anything I do on it (which is maybe 2 tasks per year).
0
Comment
Question by:SkipFire
  • 8
  • 8
16 Comments
 
LVL 28

Accepted Solution

by:
batry_boy earned 2000 total points
ID: 20276015
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20276080
I take it there is no safe way to do it remotely?
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20276115
Nope, since you have to do it from monitor mode which means that has to be a local console connection...sorry
0
Improve Your Query Performance Tuning

In this FREE six-day email course, you'll learn from Janis Griffin, Database Performance Evangelist. She'll teach 12 steps that you can use to optimize your queries as much as possible and see measurable results in your work. Get started today!

 
LVL 4

Author Comment

by:SkipFire
ID: 20276130
And what is monitor mode, is that using a serial cable with hyper-terminal?
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20276194
It's just a low level interface before the actual PIX code is loaded that lets you perform maintenance procedures (like password recovery) on the firewall.  Yes, you use the blue serial cable that came with the PIX to connect your PC's COM port to the "Console" port on the PIX.  It should all be documented in that link that I sent you above.
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20276240
Is the blue cable special?  I have a regular serial cable, but the PIX was implemented by a previous vendor 4 or 5 years ago.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20276276
It's what Cisco calls a rollover cable...the pinouts are the following:

1 - 8
2 - 7
3 - 6
4 - 5
5 - 4
6 - 3
7 - 2
8 -1
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20276295
Ok, is there any way to do this without that cable?
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20276384
Nope, but you can make your own cable if you know how to make an Ethernet cable...just use the pinout I gave you above on either end of the Ethernet cable and crimp RJ-45 connectors on...you will also need a DB9 serial to RJ-45 adapter, but you should be able to find one of those in a computer parts store or online.

Here's a link to a how-to for making the rollover cable:

http://cisco.bupt.edu.cn/class-homepage/corelab/sem1/chap3/CCNA1_lab_inst_3_1_9d_en.pdf
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20276638
That sounds easy enough, I may be back in a few days after I get the adapter and try to reset the passwords.
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20305269
Ok, I have all the parts, but the RJ45 to DB9 is not assembled.  The DB9 is numbered, but I don't know how the RJ45 receiver is numbered.  Is it clip down and 1 on the left as I am looking in?
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20305733
No, 1 is on the right as your looking at the brass contacts with the clip down.
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20308965
I built it to specs, but it doesn't work.  There may be more serious issues though, it turns out that the internal battery clip has broken loose and is just flopping around inside.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20316885
That could be an issue, yes.  Sorry I can't help with hardware isssues such as that via a forum like this...I appreciate the points, but feel free to take the points back, if possible, since I think you have a completely separate issue here.
0
 
LVL 4

Author Comment

by:SkipFire
ID: 20316941
I think your solution was correct, and it answered the question I asked.  Just because the problem turns out to be something other than I thought does not make your answer any less valid.  Thanks for all the help, I'll just replace the PIX with something easier to manage like a Linksys RV042.  I thought the PIX was overkill for them anyway.
0
 
LVL 28

Expert Comment

by:batry_boy
ID: 20316968
Thanks for the points.  Good luck and see you in the forums!
0

Featured Post

Prepare for an Exciting Career in Cybersecurity

Help prevent cyber-threats and provide solutions to safeguard our global digital economy. Earn your MS in Cybersecurity. WGU’s MSCSIA degree program curriculum features two internationally recognized certifications from the EC-Council at no additional time or cost.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

This month, Experts Exchange’s free Course of the Month is focused on CompTIA IT Fundamentals.
This article is about building a VRF-Aware site to site VPN tunnels in Cisco CSR1000V router with IOS XE. There are two VRF-Aware Policy Based IPsec VPN tunnels configured on CSR1000V router one with NAT and another without NAT.
Internet Business Fax to Email Made Easy - With  eFax Corporate (http://www.enterprise.efax.com), you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, f…
Monitoring a network: how to monitor network services and why? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the philosophy behind service monitoring and why a handshake validation is critical in network monitoring. Software utilized …

568 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question