Solved

no cisco firewall password

Posted on 2012-12-21
2
288 Views
Last Modified: 2013-03-26
I have a cisco asa 5505 firewall and the documentation given to us does not have a password that works. Is there a back door we can get into it??

The firewall is live and working. We just can't get into it and we need to run updates.
0
Comment
Question by:jmahlmann
2 Comments
 
LVL 20

Accepted Solution

by:
rauenpc earned 500 total points
ID: 38714330
You'll need to do a password reset. reboot the firewall, "break" the bootup. You'll end up at a rommon> prompt where you'll enter the command confreg, and a list of options will be presented. Make sure to write down the current confreg code which is usually 0x0 or 0x1. The only option you need to take is to "ignore config at bootup". This will allow you to boot the asa without a config, get to privileged mode, copy the startup config to running. At this point the asa will be back up and running, and you'll be in privileged mode. Enter config mode, type in new passwords and you're good to go.
All that's left is to enter the command config-register 0x0 (or whatever the register was before you did the confreg command)

http://www.cisco.com/en/US/docs/security/asa/asa71/configuration/guide/trouble.html#wp1049302
0
 
LVL 57

Expert Comment

by:Pete Long
ID: 38717062
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Cisco Pix/ASA hairpinning The term, hairpinning, comes from the fact that the traffic comes from one source into a router or similar device, makes a U-turn, and goes back the same way it came. Visualize this and you will see something that looks …
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question