Cisco 801 Week 3 Lab Report
This came from the cisco site and is not my own:
Introduction
This document describes the procedure for recovering an enable password or replacing enable-secret passwords on Cisco 801, 802, 803, 804, 805, 811, and 813 Series Routers. These passwords are used to protect access to privileged EXEC and configuration modes. The enable password can be recovered because it is displayed in plain text in the configutaion file. The enable-secret password is encrypted in the configuration file and therefore can only be replaced with a new password.
Prerequisites
Requirements
There are no specific requirements for this document.
Conventions
For more information on document conventions, see the Cisco Technical Tips Conventions.
Step-by-Step …show more content…
Procedure
Use the following procedure to perform password recovery on the 8xx Series Routers.
You may encounter booting problems with the Cisco 801, 802, 803, 804, 805, 811 and 813 Series Routers. Cisco 801-805, 811, and 813 routers boot into TinyROM at power-up or after saving any configuration from the console port using Cisco IOS® Software Release 12.1(3) and later. For details of the affected unit serial number and the procedure to solve the booting problem, see Field Notice: Cisco 801-805 and Cisco 811 and 813 Boots into TinyROM.
Note: To recover a password on Cisco 806, 826, 827, 828, 831, or 837 Series Routers, refer to Password Recovery Procedure for the Cisco 806, 827, and 837 Series Routers.
Attach a terminal or PC with terminal emulation to the console port of the router. Use the following terminal …show more content…
settings:
9600 baud rate
No parity
8 data bits
1 stop bitThe required console cable specifications are described in Cabling Guide for Console and AUX Ports.
Use the power switch to turn the router off and then turn it back on.
Press Break on the terminal keyboard within 60 seconds of the power-up to put the router into ROMMON.
If the break sequence doesn't work, see Possible Key Combinations for Break Sequence During Password Recovery for other key combinations.
Type set at the boot# prompt and record the current value of the configuration register (set by the "ios-conf" variable):
boot# set set baud =9600 set data-bits =8 set parity =none set stop-bits =1 set console-flags =0 set mac-address =0050.7307.C329 set unit-ip =10.200.40.65 set serv-ip =255.255.255.255 set netmask =255.255.252.0 set gate-ip =10.200.40.1 set pkt-timeout =8 set tftp-timeout =16 set boot-action =flash set file-name ="c800-nsy6-mw.122-10b.bin" set watchdog =off set prompt ="boot" set ios-conf =0x2102
!--- This is the value to record
Type set ios-conf = 142 at the boot# prompt.
If Flash is intact, the best setting is 142.
If the Flash is not installed or is erased, use the 141 setting.
Note: With this setting, you can view or erase the configuration, but you cannot change the password.
Type boot at the boot# prompt to initialize the router.
The router reboots but ignores its saved
configuration.
Type no after each setup question or press Ctrl-C to skip the initial setup procedure.
Type enable at the Router> prompt.
You'll be in enable mode and see the Router# prompt.
Important: Type config mem or copy start running to copy the nonvolatile RAM (NVRAM) into memory. Do not type config term or copy running start.
Type write terminal or show running.
The show running and write terminal commands show the configuration of the router. In this configuration, you see under all the interfaces the shutdown command, which means all interfaces are currently shutdown. Also, you can see the passwords either in encrypted or unencrypted format.
Type config term and make the changes.
The prompt is now hostname(config)#.
Type enable secret .
Issue the no shutdown command on every interface that is used. If you issue a show ip interface brief command, every interface that you want to use should be "up up".
Type config-register 0x2102 , or the value you recorded in step 4.
Press Ctrl-z to leave the configuration mode.
The prompt is now hostname#.
Type write mem or copy running startup to commit the changes.
Type reload. Once the router reloads, the configuration register value changes from 0x142 to 0x2102.
Introduction
This document describes the procedure for recovering an enable password or replacing enable-secret passwords on Cisco 801, 802, 803, 804, 805, 811, and 813 Series Routers. These passwords are used to protect access to privileged EXEC and configuration modes. The enable password can be recovered because it is displayed in plain text in the configutaion file. The enable-secret password is encrypted in the configuration file and therefore can only be replaced with a new password.
Prerequisites
Requirements
There are no specific requirements for this document.
Conventions
For more information on document conventions, see the Cisco Technical Tips Conventions.
Step-by-Step …show more content…
Procedure
Use the following procedure to perform password recovery on the 8xx Series Routers.
You may encounter booting problems with the Cisco 801, 802, 803, 804, 805, 811 and 813 Series Routers. Cisco 801-805, 811, and 813 routers boot into TinyROM at power-up or after saving any configuration from the console port using Cisco IOS® Software Release 12.1(3) and later. For details of the affected unit serial number and the procedure to solve the booting problem, see Field Notice: Cisco 801-805 and Cisco 811 and 813 Boots into TinyROM.
Note: To recover a password on Cisco 806, 826, 827, 828, 831, or 837 Series Routers, refer to Password Recovery Procedure for the Cisco 806, 827, and 837 Series Routers.
Attach a terminal or PC with terminal emulation to the console port of the router. Use the following terminal …show more content…
settings:
9600 baud rate
No parity
8 data bits
1 stop bitThe required console cable specifications are described in Cabling Guide for Console and AUX Ports.
Use the power switch to turn the router off and then turn it back on.
Press Break on the terminal keyboard within 60 seconds of the power-up to put the router into ROMMON.
If the break sequence doesn't work, see Possible Key Combinations for Break Sequence During Password Recovery for other key combinations.
Type set at the boot# prompt and record the current value of the configuration register (set by the "ios-conf" variable):
boot# set set baud =9600 set data-bits =8 set parity =none set stop-bits =1 set console-flags =0 set mac-address =0050.7307.C329 set unit-ip =10.200.40.65 set serv-ip =255.255.255.255 set netmask =255.255.252.0 set gate-ip =10.200.40.1 set pkt-timeout =8 set tftp-timeout =16 set boot-action =flash set file-name ="c800-nsy6-mw.122-10b.bin" set watchdog =off set prompt ="boot" set ios-conf =0x2102
!--- This is the value to record
Type set ios-conf = 142 at the boot# prompt.
If Flash is intact, the best setting is 142.
If the Flash is not installed or is erased, use the 141 setting.
Note: With this setting, you can view or erase the configuration, but you cannot change the password.
Type boot at the boot# prompt to initialize the router.
The router reboots but ignores its saved
configuration.
Type no after each setup question or press Ctrl-C to skip the initial setup procedure.
Type enable at the Router> prompt.
You'll be in enable mode and see the Router# prompt.
Important: Type config mem or copy start running to copy the nonvolatile RAM (NVRAM) into memory. Do not type config term or copy running start.
Type write terminal or show running.
The show running and write terminal commands show the configuration of the router. In this configuration, you see under all the interfaces the shutdown command, which means all interfaces are currently shutdown. Also, you can see the passwords either in encrypted or unencrypted format.
Type config term and make the changes.
The prompt is now hostname(config)#.
Type enable secret .
Issue the no shutdown command on every interface that is used. If you issue a show ip interface brief command, every interface that you want to use should be "up up".
Type config-register 0x2102 , or the value you recorded in step 4.
Press Ctrl-z to leave the configuration mode.
The prompt is now hostname#.
Type write mem or copy running startup to commit the changes.
Type reload. Once the router reloads, the configuration register value changes from 0x142 to 0x2102.