Procedure | If this switch is running EXOS 16.2 or higher, you can use a one-time failsafe password to login.
Otherwise, you will need to use one of the following methods. The first involves creating an autoexec script to add a temporary account, and the second involves transferring the XML config off the switch and modifying it in a text editor. Both require the same initial steps.
Initial Steps: Reboot the switch with a default configuration
- Connect to the switch via console connection.
- Power cycle the switch.
- During the boot process “hold the spacebar” to enter bootrom.
Extreme Networks
Alternate BootStrap Image
Starting CRC of Default image
Using Default image ...
Extreme Networks
Default BootLoader Image
DRAM Post
Press and hold the <spacebar> to enter the bootrom.
- In the bootrom, type the commands below to select a default configuration to be booted:
- The switch should now boot with a factory default configuration. Username:admin, Password:<blank>
At this point, perform one of the procedures below. Either continue with the steps below, to create an autoexec script, or skip down to "Transferring the XML config off and modifying it"
Method 1: Creating an autoexec script
- Enter the vi editor to create an autoexec.xsf file
vi autoexec.xsf
- Press the i key to enter insert mode.
- Type the following line, which will create a new user called 'temp' with admin privileges and a password of 'password'
create account admin temp password
- Exit insert mode by pressing ESC, then write the file and quit vi by typing :wq
- Reboot the switch by typing reboot, but do NOT save the config. Saving the config at this point will overwrite the existing configuration with a blank one.
- When the switch reboots, the autoexec.xsf script will be executed, creating the new account.
- Log in using the new account, and make the appropriate changes to the other accounts to allow access. If the password for an account is unknown, the only way to change the password is to delete the account and re-create it.
- Log out, and ensure that the other accounts can now be used to log into the switch.
- While logged in using a different account than one created in the script, delete the temp account and the autoexec.xsf script.
delete account temp
rm autoexec.xsf
At this point, the switch should be back to its initial configuration, except for the passwords on the modified accounts.
Method 2: Transferring the XML config off and modifying it:
- Once logged into the switch: configure an IP address on VLAN: mgmt and connect a PC with a TFTP server.
configure vlan mgmt ipaddress <SWITCH_IP>
- Use ls to list files present on the switches memory.
- Use TFTP to collect the original configuration file. Likely “primary.cfg”.
tftp put <TFTP_SERVER_IP> primary.cfg
- Save a new config file with the current factory default credentials
save configuration nopassword
- Use TFTP to collect this file
tftp put <TFTP_SERVER_IP> nopassword.cfg
- Use a text editor such as Notepad++ to replace the password data as demonstrated below:
Primary.cfg:
<account><name><![CDATA[admin]]></name><password><![CDATA[DlWbeK$OF3c54bLuRbBMtpy19rfP/]]></password><default_val>0</default_val><readwrite>1</readwrite></account>
Nopassword.cfg:
<account><name><![CDATA[admin]]></name><password><![CDATA[DlWRiK$y/1Cl8umtCcGlxaRAW8.m/]]></password><default_val>1</default_val><readwrite>1</readwrite></account>
Primary.cfg:
<account><name><![CDATA[admin]]></name><password><![CDATA[DlWRiK$y/1Cl8umtCcGlxaRAW8.m/]]></password><default_val>0</default_val><readwrite>1</readwrite></account>
- Use TFTP to overwrite the configuration on the switch with the password edited version.
tftp get <TFTP_SERVER_IP> primary.cfg force-overwrite
- Use the new configuration
use configuration primary
reboot
- Login to switch with admin/no password and verify that the expected configuration is present.
- If not, collect any other .cfg files present on the switch and repeat the process.
|
|
---|