Free Cisco Lab

Password Recovery is a misnomer, you cannot recover the password only reset it. But if you have a Cisco router and have forgot the password, or purchased a used router and do not know the password, then this is a task you will need to complete to gain access to the router.

There are programs available to crack Cisco passwords. These programs are basically useless as they only can crack the user and TTY passwords. They cannot crack the ENABLE password and this is the password you need to gain access to the privileged mode. Resting the ENABLE password for most Cisco devices can only be done by changing the configuration register via the console port.

There are two sets of instruction below. The first refer to the 2000, 2500, 3000, 4000, 7000 and IGS series routers. The second refers to the 1003, 1600, 2600, 3600, 4500, 7200, 7500, 12000, AS5200, AS5300, uBR7246 and IDT. Before we start password recovery procedure we need to attach a computer running terminal emulation software such as hyper-term or PuTTY to the console port of the Cisco device using a roll over cable. Set the terminal software to use the following communication settings.

• 9600 bps
• 8 data bits
• No parity
• 1 stop bits
• No flow control

Now we are ready to run the password recovery procedure. Select the appropriate procedure below for the router you wish to reset the password on.   2000, 2500, 3000, 4000, 7000 and IGS series routers:

1. Reset the router using the power switch.
2. Press Break on the terminal keyboard within 60 seconds of power on the router, after this a “>” prompt will be displayed indicating that you are running ROMmon.
3. Type o, press ENTER, and record the current value of the configuration register.
4. Type o/r 0x2142, and press ENTER at the > prompt
5. Type i at the > prompt, and press ENTER.
6. Type no after each question, or press CTRL + C to skip the setup procedure.
7. Type enable at the Router> prompt.
8. Type copy startup-config running-config to copy the current configuration into memory. Note: Do not type copy running-config startup-config. These will erase your existing startup configuration.
9. Type show running-config.
10. Type configure terminal, to enter the configuration mode.
11. Type enable secret <password> to change the enable secret password.
12. Enter the no shutdown command for each interface that is used.
13. Type config-register with the value you recorded in step 3 or 0x2102.
14. Press CTRL + Z to exit the configuration mode.
15. Type copy running-config startup-config to commit the changes to memory.
16. Type Reload to restart the router.

1003, 1600, 2600, 3600, 4500, 7200, 7500, 12000, AS5200, AS5300, uBR7246 and IDT series routers:

1. Reset the router using the power switch.
2. Press Break on the terminal keyboard within 60 seconds of power on the router, after this the monitor will display rommon 1> indicating the the router is running in ROMMON.
3. Type confreg 0x2142 at the rommon 1> prompt in order to boot from Flash.
4. Type reset at the rommon 2> prompt.
5. Type no after each question, or press Ctrl + C to skip the setup procedure.
6. Type enable at the Router> prompt.
7. Type copy startup-config running-config to copy the current configuration into memory. Note: Do not type copy running-config startup-config. These commands erase your existing startup configuration.
8. Type show running-config.
9. Type configure terminal to enter the configuration mode.
10. Type enable secret <password> to change the enable secret password
11. Enter the no shutdown command for each interface that you use.
12. Type config-register 0x2102 and press enter
13. Press Ctrl-z to exit the configuration mode.
14. Type copy running-config startup-config to commit the changes to memory.
15. Type Reload to restart the router

Leave a Reply

Name (required)

Mail (will not be published) (required)

Website

Security Question:

What is 4 + 8 ?

Please leave these two fields as-is:

IMPORTANT! To be able to proceed, you need to solve the following simple math (so we know that you are a human) :-)

CAPTCHA Code *