Solved

Cisco PIX 501 lost password

Posted on 2012-04-13
4
750 Views
Last Modified: 2012-04-21
Hello
  We have a Cisco 501 PIX firewall and do not have the password. The web interface is turned off. I have tried to telnet in with some of the common password but nothing works. How can I reset the firewall and create a new password, and turn on the web interface
0
Comment
Question by:sfossupport
  • 2
4 Comments
 
LVL 17

Accepted Solution

by:
Kvistofta earned 500 total points
ID: 37843698
First, you need to connect to the console from a computer with a serial port and a light-blue Cisco console-cable. When this is prepared, you need to do a "password recovery". Basically, you reboot the firewall, break the startup-sequence, change a config value telling the firewall to startup without reading the stored config. After that you can either start all over from a fresh config, or apply the stored config (and change the password).

It is all explained here:
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml

After this is done you can turn on the "web interface" (ASDM) or do whatever changes to the config that you like.

Good luck!

Best regards
Kvistofta
0
 
LVL 9

Expert Comment

by:Aeriden
ID: 37843701
0
 
LVL 9

Expert Comment

by:Aeriden
ID: 37843709
You can then run configure factory-default to reset back to factory settings, which includes having the web interface enabled.
0
 
LVL 11

Author Closing Comment

by:sfossupport
ID: 37875774
Hello
  Thanks for the help. It would be god to mention that you need to have a working tftp
server, and know the pix version. Also check connectivity.
 >interface 0
 > server 192.168.x.x {Tftp serer address with npxx.bin file}
 >ipaddress xxx.xx.x.x (inside address on pix firewall}
 >gateway xxx.xxx.x.x
 > ping gateway
 > ping tftp
Once this is working you are ready to go
0

Featured Post

Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
increase internet speed 3 96
Hardening ScreenOS 8 119
What are acceptable WiFi signal strengths 6 72
Cisco ASA blocks some https sites. 27 43
In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
Email security requires an ever evolving service that stays up to date with counter-evolving threats. The Email Laundry perform Research and Development to ensure their email security service evolves faster than cyber criminals. We apply our Threat…
In an interesting question (https://www.experts-exchange.com/questions/29008360/) here at Experts Exchange, a member asked how to split a single image into multiple images. The primary usage for this is to place many photographs on a flatbed scanner…

839 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question