Home | Skip to Content | Skip to Search | Skip to Navigation | Skip to Footer |
Worldwide [change] |Register |About Cisco
Guest

Hierarchical Navigation

Cisco ASA 5500 Series Adaptive Security Appliances

Password Recovery Procedure for the ASA Security Services Module

Downloads

Document ID: 82109


Contents

Introduction
Prerequisites
      Requirements
      Related Products
      Conventions
Step-by-Step Procedure
      Sample Procedure
NetPro Discussion Forums - Featured Conversations
Related Information

Introduction

This document describes how to recover a password on a Cisco ASA 5500 Series Content Security and Control Security Services Module (CSC-SSM) or the Advanced Inspection and Prevention Security Services Module (AIP-SSM) without having to re-image the device.

Prerequisites

Requirements

List additional files that you need for the recovery procedure. This includes an explanation of how and where to get the files and any processing that needs to happen before the recovery procedure begins.

Cisco ASA 8.x and later software provides a mechanism to reset the passwords of the SSM modules (CSC or AIP) without having to re-image the device.

Note: The CSC and AIP modules must run version 6.0 in order for the feature to work. There is no option for password recovery in version 5.0 for the AIP-SSM or CSC-SSM, because this feature is not introduced until version 6.0.

Related Products

This password recovery procedure can be used for any of these products:

  • Advanced Inspection and Prevention Security Services Module (AIP-SSM)

  • Content Security and Control Security Services Module (CSC-SSM)

Conventions

Refer to Cisco Technical Tips Conventions for more information on document conventions.

Step-by-Step Procedure

This step is necessary in order to complete the password recovery.

Use the hw-module module <module_num> password-reset command from the Cisco ASA CLI. For the AIP module, this command sets the configuration register in ROMMON to cause a boot of the password reset image and then power cycles the module. For the CSC module, this command sends the session 1 do reset-password command to the module. 

ciscoasa(config)#hw-module module 1 password-reset
Reset the password on module in slot 1? [confirm]

Sample Procedure

This procedure shows how to recover the password using the Cisco Adaptive Security Device Manager (ASDM).

  1. For the AIP-SSM, click Tools on the main menu and select IPS Password Reset.

    asa-serv-mod-pw-rec-1.gif

  2. For the CSC-SSM, click Tools on the main menu and select CSC Password Reset.

    asa-serv-mod-pw-rec-2.gif

NetPro Discussion Forums - Featured Conversations

Networking Professionals Connection is a forum for networking professionals to share questions, suggestions, and information about networking solutions, products, and technologies. The featured links are some of the most recent conversations available in this technology.
NetPro Discussion Forums - Featured Conversations for Security
Security: Intrusion Detection [Systems]
Security: AAA
Security: General
Security: Firewalling

Related Information

Updated: Jun 25, 2007Document ID: 82109