Solved

Cisco PIX 501 lost password

Posted on 2012-04-13
4
754 Views
Last Modified: 2012-04-21
Hello
  We have a Cisco 501 PIX firewall and do not have the password. The web interface is turned off. I have tried to telnet in with some of the common password but nothing works. How can I reset the firewall and create a new password, and turn on the web interface
0
Comment
Question by:sfossupport
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
4 Comments
 
LVL 17

Accepted Solution

by:
Kvistofta earned 500 total points
ID: 37843698
First, you need to connect to the console from a computer with a serial port and a light-blue Cisco console-cable. When this is prepared, you need to do a "password recovery". Basically, you reboot the firewall, break the startup-sequence, change a config value telling the firewall to startup without reading the stored config. After that you can either start all over from a fresh config, or apply the stored config (and change the password).

It is all explained here:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml

After this is done you can turn on the "web interface" (ASDM) or do whatever changes to the config that you like.

Good luck!

Best regards
Kvistofta
0
 
LVL 9

Expert Comment

by:Aeriden
ID: 37843709
You can then run configure factory-default to reset back to factory settings, which includes having the web interface enabled.
0
 
LVL 11

Author Closing Comment

by:sfossupport
ID: 37875774
Hello
  Thanks for the help. It would be god to mention that you need to have a working tftp
server, and know the pix version. Also check connectivity.
 >interface 0
 > server 192.168.x.x {Tftp serer address with npxx.bin file}
 >ipaddress xxx.xx.x.x (inside address on pix firewall}
 >gateway xxx.xxx.x.x
 > ping gateway
 > ping tftp
Once this is working you are ready to go
0

Featured Post

What, When and Where - Security Threats from Q1

Join Corey Nachreiner, CTO, and Marc Laliberte, Information Security Threat Analyst, on July 26th as they explore their key findings from the first quarter of 2017.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
We sought a budget ($5,000) firewall solution that would provide all the performance we needed with no single point of failure.  Hosting a SAAS web application in our datacenter, it was critical that we find a way to keep connectivity up and inbound…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
NetCrunch network monitor is a highly extensive platform for network monitoring and alert generation. In this video you'll see a live demo of NetCrunch with most notable features explained in a walk-through manner. You'll also get to know the philos…
Suggested Courses

626 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question