System information
Troubleshooting Security Implementations 24-481
Password-Recovery Procedure: Platforms Running Current Cisco IOS Releases
• Cisco 7000 series routers running Software Release 9.17(4) through 9.21 from ROM
Some of these platforms are configurable in software. Others require that you physically change the
position of the configuration register jumper on the processor card. Figure 24-1 Figure 24–1 shows
diverging paths, when necessary, to take you through the steps required for the platform and software
with which you are working.
Refer to Table 24-11 to determine whether the platform with which you are working is configurable
in software, or if it requires you to physically move the jumper.
The next procedure describes the password-recovery process for the following platforms only:
• Cisco 2000, Cisco 2500, Cisco 3000, and Cisco 4000 series routers
• Cisco 7000 series routers running Software Release 9.17(4) or later (Flash memory or netboot)
or Cisco IOS Release 10.0 or later from ROM
• Cisco IGS Running Software Release 9.1 or later
For the platforms listed, be certain to follow the path labeled “Cisco 2000, 2500, 3000, 4000 series;
Cisco 7000 series running Software Release 9.17(4) or later (Flash/netboot) or Cisco IOS Release
10.0 or later (ROM); IGS running Software Release 9.1 or later” in the flowchart (see Figure 24-1).
For the step-by-step password recovery sequence for other platforms, see one of the following
sections:
• Password-Recovery Procedure: Platforms Running Recent Software Releases
• Password-Recovery Procedure: Platforms Running Earlier Software Releases
• Password-Recovery Procedure: IGS Running Software Prior to Software Release 9.1
• Password-Recovery Procedure: Cisco 500-CS Communication Server
Note To complete this procedure, you must have a terminal or a personal computer (running
terminal emulation software) connected to the console port of the router. In addition, make sure you
know the break command key sequence.
Following is the password-recovery procedure for Cisco platforms running current Cisco IOS
software:
Step 1 Power cycle the router.
Step 2 Use the break key sequence for your terminal or terminal emulation software within
60 seconds of turning on the power.
The ROM monitor (>) prompt will appear.
Step 3 Enter the command e/s 2000002. (For Cisco 7000 series routers, enter
e/s XXXXXXXX.) This command examines the short (16-bit) memory location for the
software configuration register.
Record the output resulting from this command. This is the software configuration
register value.
Step 4 Enter q (quit) to return to the ROM monitor (>) prompt.
Step 5 Enter the o/r 0x42 command. The value 42 sets the software configuration register bit to
position 6, which allows the router to ignore the contents of NVRAM when booting. (Be
sure to enter 0x followed by the configuration register value.)
Step 6 Enter i (initialize) at the ROM monitor (>) prompt. The router will reboot.