Cisco IOS Password Recovery

From NetworkStuff

The following details the basic procedure for performing password recovery on Cisco IOS based devices.

Prerequisites

These pre-requisites must be met;

1. Working serial console connection to the device, (a Cisco rollover cable is required)

Password Recovery Procedure

• Connect to the device's console port (9600, 8, N, 1, None)

• Reboot or power on the device

• Enter ROM Monitor Mode (aka ROMmon) by entering a suitable Terminal Break Sequence

• Change the Configuration Register to 0x2142 using this command: confreg 0x2142

• Reboot - The device will boot without using it's startup configuration and will be in it's factory default configuration

• Log in and enter enable (aka priviledged) mode using this command: enable

• Copy the startup config to the running config using this command: copy start run

• Change the enable password and/or secret as appropriate using commands: enable password and/or enable secret

• Change the Configuration Register back to 0x2102 using this command: configuration-register 0x2102

• Save the running configuration to the start up configuration using this command: copy run start

Usage Notes

If you're having trouble entering ROMmon mode refer to the Terminal Break Sequence article for assistance. Also note on some switches pressing and holding down the mode button on the device during boot up performs the same function.

Related Articles

See the Cisco Rollover Cable Specifications article for detailed information on the cable required to connect to the serial or RJ45 console port

See the Configuration Register article for more information on possible values for the register

We really do appreciate all feedback so please do send your comments, suggestions or corrections to steve#networkstuff.eu (replacing the # with an @)