Cisco Systems IPS 7.1 Home Security System User Manual


  Open as PDF
of 1042
 
C-8
Cisco Intrusion Prevention System CLI Sensor Configuration Guide for IPS 7.1
OL-19892-01
Appendix C Troubleshooting
Password Recovery
Password recovery implementations vary according to IPS platform requirements. Password recovery is
implemented only for the cisco administrative account and is enabled by default. The IPS administrator
can then recover user passwords for other accounts using the CLI. The cisco user password reverts to
cisco and must be changed after the next login.
Table C-1 lists the password recovery methods according to platform.
Recovering the Password for the Appliance
This section describes the two ways to recover the password for appliances. It contains the following
topics:
Using the GRUB Menu, page C-8
Using ROMMON, page C-9
Using the GRUB Menu
Note You must have a terminal server or direct serial connection to the appliance to use the GRUB menu to
recover the password.
For the IPS 4270-20, IPS 4355, IPS 4360, IPS 4510, and IPS 4520 appliances, the password recovery is
found in the GRUB menu, which appears during bootup. When the GRUB menu appears, press any key
to pause the boot process.
To recover the password on appliances, follow these steps:
Step 1 Reboot the appliance to see the GRUB menu.
GNU GRUB version 0.94 (632K lower / 523264K upper memory)
-------------------------------------------
0: Cisco IPS
1: Cisco IPS Recovery
2: Cisco IPS Clear Password (cisco)
-------------------------------------------
Use the ^ and v keys to select which entry is highlighted.
Press enter to boot the selected OS, 'e' to edit the
Commands before booting, or 'c' for a command-line.
Highlighted entry is 0:
Step 2 Press any key to pause the boot process.
Table C-1 Password Recovery Methods According to Platform
Platform Description Recovery Method
4200 series sensors
4300 series sensors
4500 series sensors
Standalone IPS appliances GRUB prompt or ROMMON
ASA 5500 AIP SSM
ASA 5500-X IPS SSP
ASA 5585-X IPS SSP
ASA 5500 series adaptive
security appliance IPS modules
Adaptive security appliance CLI
command
 previous next