Password Recovery Procedure for Cisco IPS

Overview:

The following document outlines how to perform the password recovery procedure on the Cisco IDS/IPS 4200 series devices as used in INE's CCIE Security Rack Rentals.

Step 1: Reboot the IPS Device

Open the Rack Access Control Panel located at http://members.ine.com by clicking on the "Control Panel" link under your current rack session. Note that the control panel only appears if you have a currently active rack session. Under the control panel click "Power Cycle" next to the IPS device.

Step 2: Enter "IPS Recovery" mode

Connect to the console port of the IPS device using your rack access credentials:

User Access Verification
Username: scrack2
Password:
SCRack2AS>ips
Trying IPS (1.1.1.1, 2013)... Open

Select Cisco IPS Recovery as follows:

üü÷÷ûîûî
    GNU GRUB  version 0.94  (640K lower / 1047488K upper memory)
-------------------------------------------------------------------
 0: Cisco IPS
 1: Cisco IPS Recovery
-------------------------------------------------------------------
      Use the ^ and v keys to select which entry is highlighted.
      Press enter to boot the selected OS, 'e' to edit the
      commands before booting, or 'c' for a command-line.
    Highlighted entry is 1:
  Booting 'Cisco IPS Recovery'

Step 3: Reset the password

The default login and password are "cisco". Reset the password to "ciscoids4210" when prompted for a new password:

sensor login: cisco
Password: cisco
You are required to change your password immediately (password aged)
Changing password for cisco
(current) UNIX password: cisco
New password: ciscoids4210

The IPS device should now exit to the CLI with a default configuration.

© 2007 Internetwork Expert, Inc.