Solved

Lost CSC password

Posted on 2008-10-12
7
1,485 Views
Last Modified: 2012-08-13
How do I recover a lost password on my ASA 5510 Series Content Security SSM-10 without re-imaging the entire OS?
0
Comment
Question by:RobFarley
  • 3
  • 3
7 Comments
 
LVL 32

Expert Comment

by:harbor235
ID: 22702509
"The CSC and AIP modules must run version 6.0 in order for the feature to work. There is no option for password recovery in version 5.0 for the AIP-SSM or CSC-SSM, because this feature is not introduced until version 6.0."

what version do you have?
0
 

Author Comment

by:RobFarley
ID: 22705214
I'm not quite sure how to determine that. Therefore I sent the following command to the ASA:

show module 1

Results:

Result of the command: "show module 1"

Mod Card Type                                    Model              Serial No.
--- -------------------------------------------- ------------------ -----------
  1 ASA 5500 Series Content Security Services Mo ASA-SSM-CSC-10     JAF10342661

Mod MAC Address Range                 Hw Version   Fw Version   Sw Version    
--- --------------------------------- ------------ ------------ ---------------
  1 0018.7317.d2eb to 0018.7317.d2eb  1.0          1.0(11)2    

Mod SSM Application Name           Status           SSM Application Version
--- ------------------------------ ---------------- --------------------------

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

0
 
LVL 32

Accepted Solution

by:
harbor235 earned 50 total points
ID: 22711348
Did you see this?

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

To get the application version do the following;

ciscoasa# session 1

sensor# show version

If you are not running the correct version you can upgrade there sensor via the upgrade command,
you will need an FTP server with the newer code on it configured to for ftp retieval.

harbor235 ;}
0
PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

 

Author Comment

by:RobFarley
ID: 22712576
This is what I get after applying the "session 1" command.

Result of the command: "session 1"

Opening command session with slot 1.
Card in slot 1 did not respond to session request.

The card is present and I get a link light when connecting the RJ-45 cable to the network!
0
 
LVL 32

Assisted Solution

by:harbor235
harbor235 earned 50 total points
ID: 22712815
This is from your output above;

Did you see this?

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

It says model 1 is unresponsive could be a problem here. is this new? I would do the following

1) Save your config, (write mem)
2) Enable logging
       config t
            logging on
            logging buffered informational
3) Power down the ASA
4) Reseat the ssm
5) Power on
6) Check status of SSM, does it still say unresponsive?
7) Check log for errors

Is the SSM under contract?

harbor235 ;}

0
 

Author Comment

by:RobFarley
ID: 22716049
Thanks for your response. Since this appears to be a hardware issue I will conclude our conversation and contact Cisco regarding a replacement.
0
 
LVL 1

Expert Comment

by:SashcoIT
ID: 24475051
Can you tell me if reseating this helped, or was a replacement necessary?

Thanks!
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
A short tutorial showing how to set up an email signature in Outlook on the Web (previously known as OWA). For free email signatures designs, visit https://www.mail-signatures.com/articles/signature-templates/?sts=6651 If you want to manage em…

809 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question