Solved

How to reset admin password for fortigate 80c firewall?

Posted on 2013-06-25
4
2,628 Views
Last Modified: 2013-07-08
This is using fortigate 80c firewall appliance. I was just took over the responsibility from my ex-colleague who already left the company. However, I found I made a mistake as he didn't pass down the admin password to me. Btw, how to reset the admin password without losing the current configuration?

Thanks in advance.
0
Comment
Question by:MezzutOzil
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
4 Comments
 

Author Comment

by:MezzutOzil
ID: 39274004
Sorry, my mistake. I want to reset admin password for Cisco Router 881 without losing the configuration.

Thanks,
0
 
LVL 9

Accepted Solution

by:
TvMpt earned 500 total points
ID: 39274014
Try this article:
Forgot your Cisco router password?  Did you know you can change them without losing your configuration?  In this brief how-to, I will walk you through it. In order to perform a password recovery, you will need to reboot the router a couple of times.  This means downtime, but it is a good sacrifice to make in order to get your passwords reset.
 
First, hook up the DB9 end of the standard light blue serial cable to your serial port.  The other end of the cable should plug into the port labeled “Console” on the back of the Cisco router.  If you do  not have a serial port, then you'll need to go purchase a USB-to-serial adapter cable and install it on your computer.
 

Now that your hardware is connected, establish a serial connection with the router.

The settings you need are:

Baud: 9600
Data bits: 8
Parity: No
Stop bits: 1
Flow Control: None
 
On Windows, I use putty for this connection.  Yes, putty can be used to make serial connections as well as telnet/ssh.  Hyperterminal works great as well.  On Linux, I use minicom and on FreeBSD/OpenBSD, I use cu (cu -s 9600 -l /dev/cuad0).
 
Reboot the router and press the Break key to interrupt the boot sequence.

For break key sequences, refer to this Cisco link: http://www.cisco.com/en/US/products/hw/routers/ps133/products_tech_note0...
 
Type confreg 0x2142.  This tells the router to bypass NVRAM during bootup.  In other words, your existing configuration won't be loaded.  The good news is that it won't be deleted either.
 
Type reset to reboot the router.  Answer No when prompted to run setup.
 
Type copy start run.  This loads your startup configuration into memory.  Now, if you type a show run config, you'll see the router configuration.  Also, you should notice that your router name is now in the prompt instead of the default “Router”.
 
Change the enable secret - “enable secret new_password”
 
Change the register back to 0x2102:
config-register 0x2102
 
When the router reboots it will load the old configuration with the new password.
 
Save the password so that it will be persistent during reboots, type copy run start
 
Reboot the router by typing reload at the enable prompt.
 
Now, keep that password in a nice safe place – in your head does not count.  I keep mine saved in a safe place for future retrieval and I make sure my customers have a copy as well.  Remember, passwords are nice until you forget them.

And the official cisco procedure didn't seems to lose the conf too.

http://www.cisco.com/en/US/products/hw/routers/ps380/products_password_recovery09186a00800942bc.shtml
0
 

Author Comment

by:MezzutOzil
ID: 39278371
Thank TvMpt,

Please allow me to have some time to go through, and then get back to you...
0
 

Author Closing Comment

by:MezzutOzil
ID: 39307860
Great, it works
0

Featured Post

Will You Be GDPR Compliant by 5/28/2018?

GDPR? That's a regulation for the European Union. But, if you collect data from customers or employees within the EU, then you need to know about GDPR and make sure your organization is compliant by May 2018. Check out our preparation checklist to make sure you're on track today!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Optimal Xbox 360 connectivity requires "OPEN NAT". If you use Juniper Netscreen or SSG firewall products in a home setting, the following steps will allow you get rid of the dreaded warning screen below and achieve the best online gaming environment…
Finding and deleting duplicate (picture) files can be a time consuming task. My wife and I, our three kids and their families all share one dilemma: Managing our pictures. Between desktops, laptops, phones, tablets, and cameras; over the last decade…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question