• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1020
  • Last Modified:

Need helping restoring my Cisco ASA 5505

I had a working Cisco ASA 5505 that I was trying to enable users over the Internet  to access  a device on ports 8000-8010, when I completely messed up the whole unit.  Before I began my adventure I did a backup of the Configuration.  I have since reset to factory settings using the CLI.  I can not open it using the GUI.  It keeps prompting me for a username and password, which I don't have.  I tried to leave it blank.  It won't let me back in.....  The ASA is set to 192.168.1.1.  I need to be able to restore the saved config file!!!!  Please assist.
0
trinle
Asked:
trinle
2 Solutions
 
PugglewuggleCommented:
Can you please send me the backup config you had?
The default password and username are Cisco and Cisco
 
0
 
PugglewuggleCommented:
Sorry - that's on routers. The default password on ASAs is blank. Not the word blank, but just nothing.
Also, you won't be able to access it except by the console port with a serial cable unless you put your PC on the inside interface and then try to connect to the PC's default gateway - that's the ASA's IP address because the factory default has DHCP enabled by default.
0
 
PugglewuggleCommented:
If you can't get in by IP connect with the console cable and a terminal emulator like PUTTY.
http://www.chiark.greenend.org.uk/~sgtatham/putty/download.html 
0
Managing Security & Risk at the Speed of Business

Gartner Research VP, Neil McDonald & AlgoSec CTO, Prof. Avishai Wool, discuss the business-driven approach to automated security policy management, its benefits and how to align security policy management with business processes to address today's security challenges.

 
trinleAuthor Commented:
I will be back onsite in the AM tomorrow......
I have a server connected via Console cable to the ASA.  The server's IP is 192.168.1.2.  The ASA has the default IP of 192.168.1.1
I used Hyper Terminal to console in to the ASA.
How do I restore the backup file that I saved?
0
 
IPFoxCommented:
Hi,

Here is procedure for password recovery.
http://www.submityourarticle.com/articles/Don%20R.-Crawley-2264/cisco-pix-firewall-17868.php
After that you can login again and restore the backup file via GUI or CLI.
0
 
PugglewuggleCommented:
You need to first establish IP communication to the device. This just means get the ASA and the server so they're able to ping each other.
Then, run a TFTP program on the server. I recommend Pumkin - good and free. http://kin.klever.net/pumpkin/ Put the config file in the TFTP root (change it to something like C:\TFTP if you're using Pumpkin).
Then run the following command on the ASA:
copy tftp run
Just fill in the blanks and that should do it! Pumpkin will ask you to accept if it's working.
If you don't get an accept prompt on Pumpkin then something's wrong.
Tell me if that works!
0
 
PugglewuggleCommented:
I will recommend against the password recover feature unless either blank, Cisco, or cisco don't work. It's case sensitive - one Cisco is capitalized the other isn't.
If it doesn't work it would be easier to just factory reset than to go through the whole recover process. It doesn't matter since it doesn't have a valid config anyways.
0
 
lrmooreCommented:
Fortunately, the password recovery procedure is quick and painless.
You can also just use cut/paste in hyperterm. You can open the old config in notepad, edit/select all / copy then with the firewall in config mode, just choose paste to host and watch it.
 
0
 
PugglewuggleCommented:
This is true, but I'm lazy. Prepping a script, executing it and all that just takes longer than pressing a button. But then again, it is just 10 minutes! :-P lol
0
 
trinleAuthor Commented:
I was able to Hyper-Terminal in and go into Config mode and copy and paste the Configs from the backup I made, thanks Irmoore.  A tech named Travis assisted in setting up the Forwarding for our GPS device.  A thanks Pugglewuggle for your input too!      
0
 
trinleAuthor Commented:
I tried the Pumpkin without success.......cool TFTP tool though.  I didn't need to reset the password.  I figured out that it kept the old password even after I set it to defaults????  Thanks guys for your prompt responses.
0

Featured Post

Firewall Management 201 with Professor Wool

In this whiteboard video, Professor Wool highlights the challenges, benefits and trade-offs of utilizing zero-touch automation for security policy change management. Watch and Learn!

Tackle projects and never again get stuck behind a technical roadblock.
Join Now