RECOVERY PASSWORD PADA ROUTER CISCO

Lupa adalah penyakit yang umum menyerang manusia apalagi pejabat yang lagi jadi tersangka.. (lho.. ?) tidak terkecuali lupa bagi administrator jaringan dalam ingat mengingat password. Ok, to the point aja pada kesempatan ini saya akan menulis langkah-langkah recovery password router cisco supaya klo saya lupa tinggal nyontek tulisan ini aja hehehe…. Berikut langkah – langkahnya:

1. Lakukan console pada router melalui hyperterminal.
2. Lihat dulu configuration register yang saat ini tersetting pada router :

Router>enable
Password:
Password:
Password:
% Bad secrets

Router>show version
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 18-Jul-07 06:21 by pt_rel_team

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.

System returned to ROM by power-on
System image file is “c2800nm-advipservicesk9-mz.124-15.T1.bin”

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco 2811 (MPC860) processor (revision 0×200) with 60416K/5120K bytes of memory
Processor board ID JAD05190MTZ (4292891495)
M860 processor: part number 0, mask 49
2 FastEthernet/IEEE 802.3 interface(s)
239K bytes of NVRAM.
62720K bytes of processor board System flash (Read/Write)

Configuration register is 0×2102

Router>

3. Catat configuration register yang tersetting saat ini, kemudian reset router.
4. Sesaat setelah reset tekan tombol crtl + backspace + break untuk masuk ke NVRAM (mode rommon).
5. Setelah masuk ke mode rommon lakukan setting configuration register (confreg) ke 2142 kemudian lakukan reset lagi pada router sbb :

Self decompressing the image :
######################
monitor: command “boot” aborted due to user interrupt
rommon 1 > confreg 2142
rommon 2 > reset
System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.
cisco 2811 (MPC860) processor (revision 0×200) with 60416K/5120K bytes of memory

Self decompressing the image :
#######################

6. Karena konfiguration register dirubah ke 2142, maka router akan langsung meloncat tanpa melalui start up config sehingga tidak akan menanyakan password, sehingga kita dapat masuk ke menu konfigurasi router.
7. Setelah masuk ke menu konfigurasi router, lakukan setting ulang password dan kembalikan settingan configuration register ke settingan awal :

Router>ena
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#ena password newpass
Router(config)#ena secret newsec
Router(config)#config-register ox2102
Router(config)#exit

8. Klo dilakukan show version pada router maka akan terlihat bahwa bila router di reset makan config-register akan kembali ke settingan 0x2102 :

Router#sh ver
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version
12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 18-Jul-07 06:21 by pt_rel_team

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.

System returned to ROM by power-on
System image file is “c2800nm-advipservicesk9-mz.124-15.T1.bin”

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
export@cisco.com.

cisco 2811 (MPC860) processor (revision 0×200) with 60416K/5120K bytes of memory
Processor board ID JAD05190MTZ (4292891495)
M860 processor: part number 0, mask 49
2 FastEthernet/IEEE 802.3 interface(s)
239K bytes of NVRAM.
62720K bytes of processor board System flash (Read/Write)

Configuration register is 0x2142 (will be 0×2102 at next reload)

9. Langkah terakhir yang tidak boleh lupa adalah copy running setup ke start up setup lalu reload router :

Router#copy run start
Destination filename [startup-config]?
Building configuration…
[OK]
Router#reload

10. Setelah reload, masukan user dan password yang baru saja anda setting. Good luck :)

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: