Scribd
Upload
150 views3 pages

Packet Tracer - Research and Execute Password Recovery Procedures - Physical Mode

The document discusses password recovery procedures for Cisco routers. It describes researching the configuration register's purpose and values, then detailing steps to recover passwords on a Cisco 2911 router using the configuration register. These steps include entering ROMMON mode, changing the configuration register value, overwriting the running configuration with the startup configuration, modifying passwords and banners, and changing the configuration register back after recovery. Physical security of routers is critical to prevent unauthorized access during recovery.

Uploaded by

Joneil Agustin
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
150 views3 pages

Packet Tracer - Research and Execute Password Recovery Procedures - Physical Mode

The document discusses password recovery procedures for Cisco routers. It describes researching the configuration register's purpose and values, then detailing steps to recover passwords on a Cisco 2911 router using the configuration register. These steps include entering ROMMON mode, changing the configuration register value, overwriting the running configuration with the startup configuration, modifying passwords and banners, and changing the configuration register back after recovery. Physical security of routers is critical to prevent unauthorized access during recovery.

Uploaded by

Joneil Agustin
Copyright
© © All Rights Reserved
We take content rights seriously. If you suspect this is your content, claim it here.
Available Formats
Download as PDF, TXT or read online on Scribd
You are on page 1/ 3

Packet Tracer - Research and Execute Password Recovery

Procedures - Physical Mode


Objectives
Part 1: Research the Configuration Register
Part 2: Document the Password Recovery Procedure for a Specific Cisco Router

Background / Scenario
The purpose of this activity is to research the procedure for recovering or resetting the enable password on a
specific Cisco router. The enable password protects access to privileged EXEC and configuration mode on
Cisco devices. The enable password can be recovered, but the enable secret password is encrypted and
would need to be replaced with a new password.
In order to bypass a password, a user must be familiar with the ROM monitor (ROMMON) mode, as well as
the configuration register setting for Cisco routers. ROMMON is basic CLI software stored in ROM that can be
used to troubleshoot boot errors and recover a router when an IOS is not found.
In this activity, you will begin by researching the purpose and settings of the configuration register for Cisco
devices. You will then research and detail the exact procedure for password recovery for a specific Cisco
router. Finally, using Packet Tracer, you will practice the procedure by using the configuration register to
recover a password on a Cisco 2911 router.
Note: By design, the activity will open with a completion percentage of 12%.

Instructions

Part 1: Research the Configuration Register


To recover or reset an enable password, you will access the ROMMON interface to instruct the router to
ignore the startup configuration when booting. When booted, access privilege EXEC mode, overwrite the
running configuration with the saved startup configuration. You will then recover or reset the password and
restore the boot process of the router to include the startup configuration.
The configuration register of the router plays a vital role in the process of password recovery. In the first part
of this activity, you will research the purpose of the configuration register of a router and the meaning of
certain configuration register values.

Step 1: Describe the purpose of the configuration register.


Questions:

What is the purpose of the configuration register?


Type your answers here.
What command changes the configuration register in global configuration mode?
Type your answers here.
What command changes the configuration register in ROMMON mode?
Type your answers here.

Step 2: Determine configuration register values and their meanings.


Questions:

Research and list the router behavior for the following configuration register values.

© 2013 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 1 of 3 www.netacad.com
Packet Tracer - Research and Execute Password Recovery Procedures - Physical Mode

0x2102
Type your answers here.
0x2142
Type your answers here.
What is the difference between these two configuration register values?
Type your answers here.

Part 2: Document the Password Recovery Procedure for a Specific Cisco Router
For Part 2, you will describe the exact procedure for recovering or resetting a password from a 2900 series
Cisco router and answer questions based on your research.

Step 1: Detail the process to recover a password on a specific Cisco router.


Research and list the steps and commands to recover or reset the enable or enable secret password from
your Cisco router. Summarize the steps in your own words.
Type your answers here.

Step 2: Using Packet Tracer, execute the recovery of an enable password and a secret
password on a Cisco 2911 router.
Imagine that you have just returned from a week-long conference. You try to log into the main company router
but while you were away, someone changed the enable password. You are unable to log into the router.
a. From the desktop of the laptop, use the terminal mode to connect to the router. Because the passwords
are unknown to you, you will not be able to log in.
b. In Physical Mode, go to the rear view of the router in the rack and switch the router off.
c. Power the router back on and quickly return to terminal mode on the laptop and enter CTRL+c before the
hash loading marks (#####) have finished displaying. If you are not quick enough, power cycle the router
another time. You should end up in ROMMON mode.
Note: On real equipment, you might have to type ALT-b instead of CTRL-c
rommon 1 >
Note: On real equipment, you must be physically near the router to execute this procedure. It is essential
that a corporation ensure that there is strong physical security for all networking devices.
d. Change the value of the configuration register and reboot.
rommon 1 > confreg 0x2142
rommon 2 > reset
e. Ensure that you enter N to the initial configuration dialog question. You will be in user EXEC mode. Go to
privileged EXEC mode.
f. Copy the startup configuration to the running configuration. The Router prompt should have changed to
Main#
g. Make the following modifications to the running configuration:
1) Change the router prompt to Branch.
2) Change the secret password to branch1.
3) Change the console vty line passwords to branch2.
4) Add a banner of “Password Recovered”.

© 2013 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 2 of 3 www.netacad.com
Packet Tracer - Research and Execute Password Recovery Procedures - Physical Mode

5) Verify the value of the configuration register.


6) Change the configuration register to 0x2102 in global config mode.
Branch(config)# config-register 0x2102
7) Save the running configuration to the startup configuration.
h. Reload the router and login with the new passwords.
i. Display the running configuration. Notice that the interfaces are in shutdown mode. Reactivate interfaces
G0/0 and G0/2.

Step 3: Answer questions about the password recovery procedure.


Using the process for password recovery, answer the following questions.
Questions:

Describe how to find the current setting for your configuration register.
Type your answers here.
Describe the process for entering ROMMON mode.
Type your answers here.
What commands do you need to enter the ROMMON interface?
Type your answers here.
What message would you expect to see when the router boots?
Type your answers here.
Why is it important to load the startup configuration into the running configuration?
Type your answers here.
Why is it important to change the configuration register back to the original value after recovering password?
Type your answers here.

Reflection Question
Why is it of critical importance that a router be physically secured to prevent unauthorized access?
Type your answers here.
End of document

© 2013 - 2021 Cisco and/or its affiliates. All rights reserved. Cisco Public Page 3 of 3 www.netacad.com

You might also like

pFad - Phonifier reborn

Pfad - The Proxy pFad of © 2024 Garber Painting. All rights reserved.

Note: This service is not intended for secure transactions such as banking, social media, email, or purchasing. Use at your own risk. We assume no liability whatsoever for broken pages.


Alternative Proxies:

Alternative Proxy

pFad Proxy

pFad v3 Proxy

pFad v4 Proxy