Handling Forgotten Administrator Account/Password (USG6000E/USG6000 and NGFW Module)
When the console password is also forgotten and there is no other high-level administrator account on the device, you need to enter the BootLoader to restore it.
- Connect to the device through the console port and restart the device. During device startup, when you see the message "Press Ctrl+B to break auto startup...", press Ctrl+B within three seconds, enter the BootLoader password, and enter the BootLoader main menu.
- For the USG6000E V600R007C00, the BootLoader has a default password. To improve security, you are advised to select 6 to modify it after entering the main menu of the BootLoader . For details about how to modify it, see Changing the BootLoader Password (USG6000E). After changing the password, please keep it safe to avoid loss. Enter the main menu of BootLoader with the modified password here.
- For USG6000E V600R007C20, by default, the BootLoader password is blank. When you log in for the first time, the system will ask you to set a password. Please follow the system prompts to set the password. Requirements: The password must be at least 8 characters long and contain at least English capital letters (A to Z). , English lowercase letters (a~z), numbers (0~9), and special characters (such as !, @, #, $, %, etc.). Please keep the password safe after setting. This section uses the example of entering the BootLoader main menu after setting a password.
- For the USG6000, the BootROM has a default password. To improve security, it is recommended to select 5 to modify it after entering the main menu of the extended BootROM . For details on how to modify it, see Changing the BootROM Password (USG6000 and NGFW Module). After the password is modified, please keep it safe to avoid loss. Enter the main menu of the extended section BootROM with the modified password here
- You can obtain various default account and password information in the Huawei Security Product Default Account and Password document. Obtaining this document requires permission. If you need to upgrade the permission, please refer to the website help.
- "BootROM" is called "BootLoader" in USG6101/6305/6305-W/6310S/6310S-W/6310S-WL/6510/6510-WL. There is no difference in key operations.
For the USG6000E, the echoed information is as follows:
Press Ctrl+B to break auto startup... 3 Enter Password:************ Main Menu 1. Default startup 2. Serial submenu 3. Ethernet submenu 4. Startup parameters submenu 5. File system submenu 6. Password manager submenu 7. Reset factory configuration 8. Reset factory password 0. Reboot Enter your choice(0-8): 8 //Choose 8 here to enter the reset administrator password submenu.For the USG6000, the echoed information is as follows:
Press Ctrl+B to Enter main menu...3 Password: ******** ====================< Extend Main Menu >==================== | <1> Boot System | | <2> Set Startup Application Software and Configuration | | <3> File Management Menu... | | <4> Load and Upgrade Menu... | | <5> Modify Bootrom Password | | <6> Reset Factory Configuration | | <7> Reset Factory Password | | <0> Reboot | | -------------------------------- ----------------------| | Press Ctrl+T to Enter Manufacture Test Menu... | | Press Ctrl+Z to Enter Diagnose Menu... | ==================================================== ========== Enter your choice(0-7): 7 //Choose 7 here to enter the reset administrator password submenu. - Select Continue to change the password, and boot the system to start.
For the USG6000E, the echoed information is as follows:
NOTE: This operation will reset current password. Choose 'yes' to continue, or 'no' to stop and return. <1> Yes <0> No Enter your choice(0-1): 1 Restoring factory password ...Done. Main Menu 1. Default startup 2. Serial submenu 3. Ethernet submenu 4. Startup parameters submenu 5. File system submenu 6. Password manager submenu 7. Reset factory configuration 8. Reset factory password 0. Reboot Enter your choice(0-8): 1 //Choose 1 here to boot the system start up.For the USG6000, the echoed information is as follows:
NOTE: This operation will reset current passwrod. Choose 'yes' to continue, or 'no' to stop and return. <1> Yes <0> No Enter your choice(0-1): 1 ====================< Extend Main Menu >==================== | <1> Boot System | | <2> Set Startup Application Software and Configuration | | <3> File Management Menu... | | <4> Load and Upgrade Menu... | | <5> Modify Bootrom Password | | <6> Reset Factory Configuration | | <7> Reset Factory Password | | <0> Reboot | | ------------------- -----------------------------------------| | Press Ctrl+T to Enter Manufacture Test Menu. .. | | Press Ctrl+Z to Enter Diagnose Menu... | ============================================================ Enter your choice(0-7): 1 //Select 1 here to boot the system.
If the following information is displayed and the user view is displayed, the device starts successfully.
Recover configuration begin ... Recover configuration end Press ENTER to get started. Warning: There is a risk on the user-interface which you login through. Please change the configuration of the user-interface as soon as possible. ************************************************************************* * Copyright (C) 2014-2020 Huawei Technologies Co., Ltd. * * All rights reserved. * * Without the owner's prior written consent, * * no decompiling or reverse-engineering shall be allowed. * ************************************************************************* Info: Please change the configuration of the password as soon as possible. <sysname>
Do not execute the command quit after entering the user view , otherwise you need to restart the device after the device exits to perform the next step to reset the administrator password.
- Reset the administrator password, assuming that the administrator is admin, reset the password to Admin@12345.
<sysname> system-view [sysname] aaa [sysname-aaa] manager-user admin [sysname-aaa-manager-user-admin] password cipher Admin@12345 Info: You are advised to config on man-machine mode. [sysname-aaa-manager-user-admin] quit [sysname-aaa] quit [sysname] quit <sysname> quit
After the password is changed, run the quit command to exit the device in time to ensure device security. After logging out, you can use the modified password to log in to the device.
Administrator account/password forgotten (USG9500)
This section describes the procedure for handling a forgotten administrator login account/password.
When the administrator account/password is forgotten and cannot log in to the device, the basic solution is as follows:
- Prepare a configuration file that can be used normally in the USG9500 in advance, such as a configuration file named newvrpcfg.zip , and obtain the administrator account/password in the configuration file.
- Upload the newvrpcfg.zip configuration file to the device under the BootROM menu , and then set it as the configuration file used for the next startup.
- After the device starts normally, use the administrator password in the newvrpcfg.zip configuration file to log in to the device.
- Copy the original configuration file (the configuration file including the forgotten administrator password, for example named vrpcfg.zip ) to the operating terminal, open the vrpcfg.zip configuration file to modify the administrator password.
- Return the modified configuration file (named modifyvrpcfg.zip , for example ) to the device, and set it as the configuration file used at next startup.
- After restarting, log into the device with the modified password.
If the manager-user password-modify enable command is used to enable the function of modifying its own password when the administrator logs in, after the device restarts, it reads the administrator password from the CF card database instead of the configuration file. If the administrator password is forgotten, the login password cannot be retrieved by restoring the configuration file. To retrieve the login password, first run the undo manager-user password-modify enable command to disable the function of modifying the administrator's own password when logging in.
The specific operation steps are as follows:
- Restart the device.
When the screen of the PC or configuration terminal that builds the configuration environment with the device displays the following, press "Ctrl+B" within 3 seconds, enter the password, and enter the BootROM main menu (Main Menu).
You can obtain various default account and password information in the Huawei Security Product Default Account and Password document. Obtaining this document requires permission. If you need to upgrade the permission, please refer to the website help.**************************************************** * * * 8090 boot ROM, Ver 166.01 * * * **************************************************** Copyright 2001-2018 Huawei Tech. Co., Ltd. Creation date: Aug 2 2016, 16:34:23 CPU type : MPC8548E Press Ctrl+B to enter Main Menu... 1 Password: ********** - The BootROM main menu is shown below.
Main Menu(bootload ver: 166.01) 1. Boot with default mode 2. Boot from CFcard 3. Enter ethernet submenu 4. Set boot file and path 5. Modify boot ROM password 6. Chkdsk CFcard 7. Format CFcard 8. List file in CFcard 9. Delete file from CFcard 10. Set patch mode 11. Set version back signal 12. Reboot Enter your choice(1-12):
- Enter 3 to enter the Ethernet submenu.
Enter your choice(1-12): 3 Ethernet Submenu 1. Download file to SDRAM through ethernet interface and boot 2. Download file to CFcard through ethernet interface 3. Modify ethernet interface boot parameters 4. Return to main menu - Enter 3 and set the parameters of the Ethernet interface in the following way, and the rest of the setting items can be set to the default values:
- Boot device is a fixed value, the MPUD of the USG9520 main control board is mottsec3, the USG9520 main control board E8KE-X3-MPU, the USG9560 main control board E8KE-X8-SRUA-200, and the USG9580 main control board EKEX16-FWCD00MPUB00 are mottsec0.
It is recommended to use the default value for the Boot device, which generally does not need to be modified, otherwise the FTP download will fail.
- The file name corresponds to the file to be downloaded. Here, the **.zip file is loaded as an example. The modification method is: directly input a new file name after the displayed file name. The following items are modified in the same way.
- inet on ethernet (e) is used to set the IP address of the FW, which can be set to be in the same network segment as the PC that provides FTP services. If the settings are not on the same network segment, ensure that the route between the FW and the FTP server is reachable.
- gateway inet (g) indicates the IP address of the gateway. When the FW and the PC are not on the same network segment, this parameter needs to be specified.
- host inet (h) must be set to the actual IP address of the PC providing FTP service.
- user (u) Enter the FTP user name.
- ftp password (pw) (blank = use rsh) Enter the corresponding FTP user password.
- flags (f) is a fixed value, 0x0 corresponds to downloading via FTP; 0x80 corresponds to downloading via TFTP.
Enter your choice(1-4): 3 Note: two protocols for download, tftp & ftp. You can modify the flags following the menu. tftp--0x80, ftp--0x0. '.' = clear field; '-' = go to previous field; ^D = quit boot device : mottsec3 processor number : 0 host name : host file name : newvrpcfg.zip inet on ethernet (e) : 10.10.12.1 inet on backplane (b): host inet (h) : 10.10.12.12 gateway inet (g) : user (u) : mpua ftp password (pw) (blank = use rsh): **** flags (f) : 0x0 target name (tn) : startup script (s) : other (o) : - Boot device is a fixed value, the MPUD of the USG9520 main control board is mottsec3, the USG9520 main control board E8KE-X3-MPU, the USG9560 main control board E8KE-X8-SRUA-200, and the USG9580 main control board EKEX16-FWCD00MPUB00 are mottsec0.
- On the operating terminal computer, open the FTP server software, specify the path where the configuration file is located, create a user name of mpua , and a password of mpua . Among them, the user and password are the user name and password that need to be input when setting the Ethernet parameters.
- Enter 2 under the Ethernet submenu to download the configuration file to CFcard.
- Enter 4 in the Ethernet submenu to return to the BootROM main menu.
- Enter 4 to set the configuration file to be used on the next startup.
Boot Files Submenu 1. Modify the boot file 2. Modify the paf file 3. Modify the license file 4. Modify the config file 5. Modify the patch file 6. Modify the patch states file 7. Return to main menu Enter your choice(1-7):
- Enter 4 to modify the configuration file used at startup to newvrpcfg.zip . The vrpcfg.zip in the information displayed on the first line is the configuration file used when the current system starts.
Config file is cfcard:/vrpcfg.zip, modify the file name if needed. Please input correctly, e.g.: cfcard:/vrpcfg.zip cfcard:/newvrpcfg.zip The file name you input is cfcard:/newvrpcfg.zip. Are you sure? Yes or No(Y/N)y Setting ...Done! Clear version back signal...Done!
- After entering 7 to return to the main menu, enter 2 again to restart the device.
- After the device restarts, use the administrator password in the newvrpcfg.zip configuration file to log in to the device.
- Copy the original configuration file vrpcfg.zip to the operating terminal (such as PC), open the configuration file and change the administrator password. Here is an example of changing the password of the administrator admin to Admin@1234.
- Return the modified configuration file modifyvrpcfg.zip to the device, and set it as the configuration file for the next startup in the user view.
<sysname> startup saved-configuration cfcard:/modifyvrpcfg.zip Info: Succeeded in setting the configuration for booting system.
- After restarting the device, you can log in with the new user name admin and password Admin@1234, and the configuration is restored to the most recently saved configuration. During the restart process, if the following information is prompted, please enter N.
Warning: The configuration has been modified, and it will be saved to the next startup saved-configuration file cfcard:/modifyvrpcfg.zip. Continue? [Y/N]:N
Reprinted from: Recovering the Administrator Password - HUAWEI USG6000E, USG6000, USG9500, NGFW Module V500, V600 Maintenance Guide (html) - Huawei