Solved

Lost CSC password

Posted on 2008-10-12
7
1,482 Views
Last Modified: 2012-08-13
How do I recover a lost password on my ASA 5510 Series Content Security SSM-10 without re-imaging the entire OS?
0
Comment
Question by:RobFarley
  • 3
  • 3
7 Comments
 
LVL 32

Expert Comment

by:harbor235
Comment Utility
"The CSC and AIP modules must run version 6.0 in order for the feature to work. There is no option for password recovery in version 5.0 for the AIP-SSM or CSC-SSM, because this feature is not introduced until version 6.0."

what version do you have?
0
 

Author Comment

by:RobFarley
Comment Utility
I'm not quite sure how to determine that. Therefore I sent the following command to the ASA:

show module 1

Results:

Result of the command: "show module 1"

Mod Card Type                                    Model              Serial No.
--- -------------------------------------------- ------------------ -----------
  1 ASA 5500 Series Content Security Services Mo ASA-SSM-CSC-10     JAF10342661

Mod MAC Address Range                 Hw Version   Fw Version   Sw Version    
--- --------------------------------- ------------ ------------ ---------------
  1 0018.7317.d2eb to 0018.7317.d2eb  1.0          1.0(11)2    

Mod SSM Application Name           Status           SSM Application Version
--- ------------------------------ ---------------- --------------------------

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

0
 
LVL 32

Accepted Solution

by:
harbor235 earned 50 total points
Comment Utility
Did you see this?

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

To get the application version do the following;

ciscoasa# session 1

sensor# show version

If you are not running the correct version you can upgrade there sensor via the upgrade command,
you will need an FTP server with the newer code on it configured to for ftp retieval.

harbor235 ;}
0
Maximize Your Threat Intelligence Reporting

Reporting is one of the most important and least talked about aspects of a world-class threat intelligence program. Here’s how to do it right.

 

Author Comment

by:RobFarley
Comment Utility
This is what I get after applying the "session 1" command.

Result of the command: "session 1"

Opening command session with slot 1.
Card in slot 1 did not respond to session request.

The card is present and I get a link light when connecting the RJ-45 cable to the network!
0
 
LVL 32

Assisted Solution

by:harbor235
harbor235 earned 50 total points
Comment Utility
This is from your output above;

Did you see this?

Mod Status             Data Plane Status     Compatibility
--- ------------------ --------------------- -------------
  1 Unresponsive       Not Applicable        

It says model 1 is unresponsive could be a problem here. is this new? I would do the following

1) Save your config, (write mem)
2) Enable logging
       config t
            logging on
            logging buffered informational
3) Power down the ASA
4) Reseat the ssm
5) Power on
6) Check status of SSM, does it still say unresponsive?
7) Check log for errors

Is the SSM under contract?

harbor235 ;}

0
 

Author Comment

by:RobFarley
Comment Utility
Thanks for your response. Since this appears to be a hardware issue I will conclude our conversation and contact Cisco regarding a replacement.
0
 
LVL 1

Expert Comment

by:SashcoIT
Comment Utility
Can you tell me if reseating this helped, or was a replacement necessary?

Thanks!
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
Here's a very brief overview of the methods PRTG Network Monitor (https://www.paessler.com/prtg) offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
This video shows how to remove a single email address from the Outlook 2010 Auto Suggestion memory. NOTE: For Outlook 2016 and 2013 perform the exact same steps. Open a new email: Click the New email button in Outlook. Start typing the address: …

762 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now