[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

Defaulting a Branch Juniper SRX240

Posted on 2016-10-29
5
Medium Priority
?
85 Views
Last Modified: 2016-11-07
Hello, I am typically a cisco guy, but I was giving a couple of Juniper SRX240's to deploy in my lab and I am having a hard time defaulting the password.  I am able to boot into boot -s by disabling watchdog.  But it appears these devices are in cluster mode and when I run set system root-authentication plain-text-password and hit commit, I get this:

root# commit
[edit]
  'ge-0/0/1'
     HA control port cannot be configured
error: Interface <ge-0/0/1.0> vlan member <vlan-trust> undefined
error: configuration check-out failed

{hold:node0}[edit]

I have a strong feeling it is because of the cluster mode, how do I fix this so I can reboot it and get into factory default config to run?>
0
Comment
Question by:tomtom9898
  • 3
  • 2
5 Comments
 
LVL 31

Expert Comment

by:Predrag
ID: 41865611
You can do it in a few different ways, depending on what is available to you.
If you know password:
[edit]
user@switch# load factory-default
[edit]
user@switch# set system root-authentication plain-text-password
[edit]
user@switch# commit and-quit

You can also reset device configuration by using hardware reset procedure.
Recovering root password for SRX device
0
 
LVL 31

Accepted Solution

by:
Predrag earned 2000 total points
ID: 41865630
Also you can revert pending changes first (if any) by issuing:

rollback 0
commit

in config mode.
0
 

Author Comment

by:tomtom9898
ID: 41866439
Great idea. Let me try that
0
 

Author Comment

by:tomtom9898
ID: 41866446
My problem is this HA, it appears the hardware reset button does not work.  I am not sure how to get it out of cluster mode.  See blow:

root# commit confirmed
[edit]
  'ge-0/0/1'
     HA control port cannot be configured
error: configuration check-out failed

{hold:node0}[edit]
root#
0
 

Author Comment

by:tomtom9898
ID: 41866448
user@host# delete vlans
user@host# delete interfaces vlan
user@host# delete interfaces interface-range interfaces-trust
user@host# delete security zones security-zone trust interfaces
user@host# commit

This finally let me commit...
0

Featured Post

Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Occasionally, we encounter connectivity issues that appear to be isolated to cable internet service.  The issues we typically encountered were reset errors within Internet Explorer when accessing web sites or continually dropped or failing VPN conne…
I found an issue or “bug” in the SonicOS platform (the firmware controlling SonicWALL security appliances) that has to do with renaming Default Service Objects, which then causes a portion of the system to become uncontrollable and unstable. BACK…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an anti-spam), the admin…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…
Suggested Courses
Course of the Month19 days, 17 hours left to enroll

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question