How to Recover Password for Cisco Router

While a network administrator forgot the password over the cisco router or switch, you need to reset password for cisco router or recover password for cisco router, this is a common mistaken for a Network Administrator, always forgot the password if long time did not do configuration for the cisco router. how to reset cisco router password? if you forgot the password to login cisco router?

Router>enable
Password:
Password:
Password:
% Bad secrets

Router>show version
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 18-Jul-07 06:21 by pt_rel_team

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.

System returned to ROM by power-on
System image file is “c2800nm-advipservicesk9-mz.124-15.T1.bin”

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
[email protected]

cisco 2811 (MPC860) processor (revision 0x200) with 60416K/5120K bytes of memory
Processor board ID JAD05190MTZ (4292891495)
M860 processor: part number 0, mask 49
2 FastEthernet/IEEE 802.3 interface(s)
239K bytes of NVRAM.
62720K bytes of processor board System flash (Read/Write)

Configuration register is 0x2102

Router>

Just remember the current cisco router register number “2102“, after that, on and off your cisco router, press crtl + backspace + break to enter the NVram

Self decompressing the image :
######################
monitor: command “boot” aborted due to user interrupt
rommon 1 > confreg 2142
rommon 2 > reset
System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.
cisco 2811 (MPC860) processor (revision 0x200) with 60416K/5120K bytes of memory

Self decompressing the image :
#######################

What is Rommon? it stand for ROM Monitor, we require to enter rommon to change the register number, when you enter rommon 1> follow above code in bold, type in confreg 2142, After that type in “reset” or reboot the cisco router, once reboot you are actually enter the router which the register number is 2142 you can just set the password exactly same with cisco router basic configuration step

Router>ena
Router#config t
Enter configuration commands, one per line. End with CNTL/Z.
Router(config)#ena password newpass
Router(config)#ena secret newsec
Router(config)#config-register ox2102
Router(config)#exit
Router#sh ver
Cisco IOS Software, 2800 Software (C2800NM-ADVIPSERVICESK9-M), Version 12.4(15)T1, RELEASE SOFTWARE (fc2)
Technical Support: http://www.cisco.com/techsupport
Copyright (c) 1986-2007 by Cisco Systems, Inc.
Compiled Wed 18-Jul-07 06:21 by pt_rel_team

ROM: System Bootstrap, Version 12.1(3r)T2, RELEASE SOFTWARE (fc1)
Copyright (c) 2000 by cisco Systems, Inc.

System returned to ROM by power-on
System image file is “c2800nm-advipservicesk9-mz.124-15.T1.bin”

This product contains cryptographic features and is subject to United
States and local country laws governing import, export, transfer and
use. Delivery of Cisco cryptographic products does not imply
third-party authority to import, export, distribute or use encryption.
Importers, exporters, distributors and users are responsible for
compliance with U.S. and local country laws. By using this product you
agree to comply with applicable laws and regulations. If you are unable
to comply with U.S. and local laws, return this product immediately.

A summary of U.S. laws governing Cisco cryptographic products may be found at:

http://www.cisco.com/wwl/export/crypto/tool/stqrg.html

If you require further assistance please contact us by sending email to
[email protected]

cisco 2811 (MPC860) processor (revision 0x200) with 60416K/5120K bytes of memory
Processor board ID JAD05190MTZ (4292891495)
M860 processor: part number 0, mask 49
2 FastEthernet/IEEE 802.3 interface(s)
239K bytes of NVRAM.
62720K bytes of processor board System flash (Read/Write)

Configuration register is 0x2142 (will be 0x2102 at next reload)

Router#copy run start
Destination filename [startup-config]?
Building configuration…
[OK]
Router#reload

Reload mean reboot the router, after reboot the router, you can access with the new password already. This is how we reset cisco router password, some said hack cisco router login password , but this is the correct way to recover password for cisco router.

27 Responses to “How to Recover Password for Cisco Router”

  1. Vincent Pang December 15, 2008 at 4:20 am #

    does this work on switch ? need to recover a password for a 2960 switch

  2. titan December 26, 2008 at 7:31 am #

    ehm. really? its new info to me.

  3. john January 9, 2009 at 9:57 pm #

    works great! Follow instructions! Thanks Lots!

  4. r33z June 30, 2009 at 11:15 am #

    This basically appears 100% same in CCNA virtual lab book..which sell at price of +-rm300…with video provided

  5. MM July 8, 2009 at 10:11 pm #

    Thanks a bunch, great tip

  6. arvind September 7, 2009 at 12:17 pm #

    hi works great thanks for taht

  7. calvyn September 7, 2009 at 1:16 pm #

    great to heard that…

  8. Behar September 18, 2009 at 5:48 am #

    what if you can’t access the usermode? How will you know the current version? Thank you.

    (I’m new to this but willing to learn) :)

  9. Gowtham October 3, 2009 at 7:10 pm #

    Hi,

    It worked..Thanks a ton!!

  10. Dan October 14, 2009 at 6:32 am #

    Very good info we will be learning this in my course (Accessing the WAN) according to what my teacher told me in class last time, Network Security.

    dan

  11. Russell November 13, 2009 at 5:27 am #

    Router(config)#config-register ox2102

    The o is a zero

    Router(config)#config-register 0x2102

    Caught me off gaurd for a min.

  12. etguh December 14, 2009 at 9:12 pm #

    i lost all my configuration.. :(
    does it work like this :
    copy star run
    enable secret passwords
    config-register 0x2102
    write mem
    reload

  13. calvyn December 15, 2009 at 9:08 pm #

    you can always have a try :D

  14. GERMAIN January 9, 2010 at 8:27 pm #

    Please i have one cisco 2811 and when i boot, after the bootstrap i receive one error message.
    ERROR: NO MEMORY DETECTED !
    DOING SYSTEM RESET.
    I don’t know what to do. I have try to break but nothing. when i press crtl + backspace + break
    i have no answer from the router. I have put one flash memory card for 64 Mb. I’m suspected that my rom have a problem, because without Flash it has to go to the Rom.
    Please help me.

  15. Barana March 31, 2010 at 5:04 pm #

    Great Stuff mate!!!

  16. buddy July 25, 2010 at 8:50 pm #

    Sir,
    First thanks for this trick.If any more tricks of recovery the router all series password.I will be very thank fully to you.

  17. muthu kumaran July 30, 2010 at 9:41 pm #

    hi it is a very useful for me.so please continue

  18. jay August 6, 2010 at 11:50 pm #

    Good morning –

    I too lost my configuration – but lucky, I did not want it.

    Please confirm that the command:
    “copy run start” works, but remove your config.

    “copy start run” will leave your current config

  19. anuj September 18, 2010 at 9:06 pm #

    Thanks

  20. Ajit October 3, 2010 at 11:53 am #

    hey this is the perfect procedure to do it.
    it works g8…

    thanx

  21. tadao January 19, 2011 at 10:21 am #

    its work for my final year project…thanx

  22. David Williams January 28, 2011 at 11:08 pm #

    This is NOT the correct procedure if you want to keep your current configuration. Should be copy start run!

  23. Glenn M June 7, 2011 at 12:53 pm #

    Actually, once the router boots up and you are at the priv users mode aka “enabled” mode, that is where you should run the command “copy start run” in order to copy your old configuration over so you don’t lose anything. Then change your password and your config-register back to 0x2102. After that, do a “copy run start” to save your changed password as well as changing the config-reg back to normal.

  24. vanikad June 30, 2011 at 2:46 am #

    It’s almost ok, but first when we reload router after got register changed in 2142 need to copy start to run first, change register back to 2102, change password and after that copy run to start (write memory), in this way we have configuration untouched but with a new password, for example watch:

    http://getnetworking.net/networking/view.php?id=2

    or this

    http://www.youtube.com/watch?v=1FTAo1VQYs8

  25. Stephen October 7, 2011 at 4:27 am #

    I Cant Get up the very first thing? the one pictured? Plz Help!!!!

  26. Craig February 5, 2012 at 12:59 am #

    Mr. Calvin:

    I want to Tell you that you Instructions for resetting the password in a Cisco Router casued me to Blow-a-Configuration in a Router for a very important client!
    Part of your instruction is In-ERROR !!!

  27. calvyn February 7, 2012 at 10:40 pm #

    hi Craig,

    Had you make a wrong move? I had try at my end few time before I wrote the instruction here.

Leave a Reply