Cisco

Cisco trick recovery password

03/06/2012

There is a easy way to get the plain text password from an encrypted one. We just need the router itself.

For example, create an username with its corresponding encrypted password:

C891(config)#username ipstorming password oops!
C891(config)#do sh run | i username ipstorming
username ipstorming password 7 104106091656

Now we only need to create a key chain with theabove encrypted key string:

C891(config)#key chain WANT_MY_PASSWORD_BACK
C891(config-keychain)#key 1
C891(config-keychain-key)#key-string 7 104106091656

Do not forget to explicilty set the 7 for encripted passwords!

And here comes the magic! 🙂

C891(config-keychain-key)#do sh key chain WANT_MY_PASSWORD_BACK
Key-chain WANT_MY_PASSWORD_BACK:
key 1 -- text "oops!"
        accept lifetime (always valid) - (always valid) [valid now]
        send lifetime (always valid) - (always valid) [valid now]

 

Antonio Maciá

Related Posts

Restricting calls on CME: COR

05/07/2012

Clean install Firepower module 6.2.3.1 on ASA5506X

05/21/2018

Cisco ISE: IP Phones and EAP-TLS Authentication

07/14/2018

No Comments

Leave a Reply