Cisco WS-C4003 Software Guide - Page 370
Recovering a Lost Password
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 370 highlights
Configuring Authentication Chapter 27 Configuring Switch Access Using AAA To disable local authentication on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Task Disable local login authentication. Use the console or telnet keywords to disable local authentication only for console or Telnet connection attempts. Disable local enable authentication. Use the console or telnet keywords to disable local authentication only for console or Telnet connection attempts. Verify the local authentication configuration. Command set authentication login local disable [all | console | http | telnet] set authentication enable local disable [all | console | http | telnet] show authentication This example shows how to disable local login and enable authentication for both console and Telnet connections, and how to verify the configuration (you must have RADIUS or TACACS+ authentication enabled before you disable local authentication): Console> (enable) set authentication login local disable local login authentication set to disable for console and telnet session. Console> (enable) set authentication enable local disable local enable authentication set to disable for console and telnet session. Console> (enable) show authentication Login Authentication tacacs radius kerberos local Console Session disabled enabled(primary) disabled disabled Telnet Session disabled enabled(primary) disabled disabled Enable Authentication: Console Session Telnet Session tacacs disabled disabled radius enabled(primary) enabled(primary) kerberos disabled disabled local disabled disabled Console> (enable) Recovering a Lost Password To recover a lost local authentication password, perform this procedure. You must complete Steps 3 to 7 within 30 seconds of a power cycle or the recovery will fail. If you lost both the login and enable passwords, repeat the process for each password. Step 1 Step 2 Step 3 Step 4 Step 5 Connect to the switch through the supervisor engine console port. You cannot recover the password if you are connected through a Telnet connection. Enter the reset system command to reboot the switch. At the "Enter Password" prompt, press Return. The login password is null for 30 seconds when you are connected to the console port. Enter privileged mode using the enable command. At the "Enter Password" prompt, press Return. The enable password is null for 30 seconds when you are connected to the console port. 27-16 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02