Recovery steps of ASA 5500 Series Firewall after forgetting password 01/16 Update SLTechnology News&Howtos

Recovery steps of ASA 5500 Series Firewall after forgetting password

2025-01-16 Update From: SLTechnology News&Howtos shulou NAV: SLTechnology News&Howtos > Network Security >

Shulou(Shulou.com)06/01 Report--

For a variety of reasons, if you forget the enable password of ASA, you cannot enter privileged mode, so you cannot configure ASA. The password recovery of route switching has been introduced earlier, and the password recovery method of ASA is similar to that of a router, changing the value of the configuration register, bypassing the startup-config configuration file at startup, and reconfiguring the password

The steps for password recovery are as follows:

(1) reseat the power cord and restart ASA

(2) press ESC or Ctrl+ break to enter ROM Monitor mode, and you can see the prompt rommon # 0 >

(3) enter the command confreg enter to check the value of the current register

Rommon # 0 > confreg

(4) if the initial value of the register is 0x00000001, no ASA will ask if you want to change the register setting, enter enter enter

(5) change the value of register to 0x41

Rommon # 1 > confreg 0x41

(6) restart the device

Rommon # 2 > boot

(7) at this point, ASA will skip the startup configuration and enter the user mode directly after startup.

(8) enter privileged mode and the password is empty.

Ciscoasa > enablepassword:ciscoasa#

(9) Save the startup configuration to the running configuration

Ciscoasa#copy startup-config running-configDestination filename [running-config]?

(10) reset the password of privileged mode to 123456 and the password of remote administration to 123.

Ciscoasa# conf tciscoasa (config) # enable password 123456ciscoasa (config) # password 123

(11) change back to the value of the register to force ASA to start from the startup read configuration

Ciscoasa (config) # config-register 0x11

(12) View the value of the current register

Ciscoasa (config) # exitciscoasa# show version

(13) at the end of the output, you will see that the value of the register will change from 0x41 to 0x00000001 after rebooting the device.

(14) Save the configuration

Ciscoasa# copy run startSource filename [running-config]

(15) enter the reload command to restart the device, ask whether to save the configuration, and enter yes enter

Ciscoasa# reload

After the device is rebooted, you can enter privileged mode using the reset password

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.

*The comments in the above article only represent the author's personal views and do not represent the views and positions of this website. If you have more insights, please feel free to contribute and share.