Skip to main content

How to recover Cisco Router/Switch Password

The following is the tutorial about how recover a Cisco Passwords (Example: Console Password, Enable Password, Enable secret, VTY Password. But no need to removing case or CMOS Battery)



Step 1: Restart / Power On the Router “R1”

image

Step 2: Press Ctrl + Break, When the router is booting IOS. This key will interrupt the router boot process and prompt you ROM Monitor (ROMMON) Mode.

 password1


Step 3: Change the Configuration Register key to 0x2142 using confreg 0x2142 command. The key 0x2142 used to avoid coping configuration from NVRAM to RAM during next boot process.
Then restart the router using reset command

image


Step 4: After router restarted you will prompted for Initial Configuration. Type no to avoid Initial Configuration.

image 


Step 5: Now the router with basic default configuration will be loaded. You can verify your passwords by show startup-config in Privilege EXEC mode.

password2 
password3


Step 6: Copy the Startup Configuration to RAM by using command copy start run.

image


Step 7: Now we can remove the password using Global Configuration commands. And the change the configuration register key to 0x2102 (default).

R1#configure terminal
R1(config)#no enable secret

R1(config)#line con 0
R1(config-line)#no password
R1(config-line)#no login
R1(config-line)#exit

R1(config)#line vty 0 4
R1(config-line)#no password
R1(config-line)#login
R1(config-line)#exit

R1(config)#config-register 0x2102
R1(config)#end

image


Step 8: Now save the current configuration to NVRAM by copy running-config startup-config command. And restart the router by reload command.

image

Finished. Now you can access your router with with no authentication.

Comments

  1. AnonymousSeptember 17, 2015 at 2:05 AM

    Found a new site called exams.eu.pn
    It seems to have the latest dumps.

    ReplyDelete
  2. Craig BonesJanuary 11, 2018 at 1:55 AM

    This comment has been removed by the author.

    ReplyDelete
  3. AnonymousJanuary 11, 2018 at 2:52 AM

    Wow, thank you for the tutorial. Now I really can understand how to do it. Thank you for such useful and important post. By the way, if you ever thought about business - you can read the international business expansion strategy to know how to do it. It's very useful. just like your post.

    ReplyDelete

Post a Comment

Popular posts from this blog

Cisco Packet Tracer Multi User Connection

Multiuser communication allows multiple point-to-point (peer) connections between multiple instances of Packet Tracer. By allowing communication between Packet Tracer instances, a new door has been opened to a fun, interactive, social, collaborative, and competitive learning environment. Instructors will now be able to create a variety of activities for students to learn in groups that will facilitate greater social interaction between students. Students will benefit from this environment by working together to solve problems and share ideas. Both students and teachers should take full advantage that Multiuser will offer in their learning environment. Technical Information Communicates between instances using PTMP. PTMP is TCP based. By default, uses TCP port 38000, is customizable, and each new instances on the same PC will use the next available port. On by default. UPnP will attempt to establish port forwarding to facilitate home networks. All network co...
2 comments
Read more

Access Control List (ACL) Simlet

An administrator is trying to ping and telnet from Switch to Router with the results shown below: For this question we only need to use the show running-config command to answer all the questions below: Router>enable Router#show running-config   Question 1 Which will fix the issue and allow ONLY ping to work while keeping telnet disabled? A. Correctly assign an IP address to interface fa0/1 B. Change the ip access-group command on fa0/0 from “in” to “out” C. Remove access-group 106 in from interface fa0/0 and add access-group 115 in. D. Remove access-group 102 out from interface s0/0/0 and add access-group 114 in E. Remove access-group 106 in from interface fa0/0 and add access-group 104 in Answer : E Explanation: The question was not about FTP so skip line #1 and line #2. The line #3 denies telnet traffic and line #4 permits icmp-echo traffic. L...
29 comments
Read more

Host A pings interface S0/0 on router 3. What is the TTL value for that ping?

Refer to the exhibit. Host A pings interface S0/0 on router 3. What is the TTL value for that ping? A. 252 B. 253 C. 254 D. 255 Answer : B Explanation: The TTL or Time-To-Live gives you an indication of the number of routers between the source and destination. The TTL is used to prevent an IP packet from looping inside an IP network and causing a network meltdown. The initial TTL packet value for an IP packet is 255 and then it is decremented by 1 each time it encounters a router. When this value reaches 0, the packet is discarded by a router. The TTL value is contained in each IP packet including ICMP packets. The TTL value given by the ping command is in fact the TTL value of an echo_response packet. By default, Windows will decrease the TTL by 128 and Ubuntu Linux by 192. The above the exact topology of this questions. I used 10.0.0.1 for Host A’s IP address and 12.0.0.2 for R3 S0/0’s IP address. All router has been config...
7 comments
Read more