华为s5720-S5735 console口密码重置

xingyun86 2023-2-23 1332

华为s5720-S5735  console口密码重置

现场问题描述:

某公司仓库C1库1F挂壁机柜S5720设备

如图,设备无法通过console口登录?原始密码未知

如何破解-----查看现场网络环境和查阅资料后决定破解密码。

★想到办法,立马开干,第一步先了解一下生产环境,确认设备可以断电,可以调试,打好招呼了开始干活。

---------------------------------步骤LIST-------------------------------------

1、通过Console口连接交换机,切断电源,重启设备;

2、当界面出现以下打印内容时候,快速按下“ctrl+B”;

3、并输入BootRom密码:Admin@huawei.com

4、根据打印信息,选择第7条,清除console口用户密码;

5、新版本S5735系列,根据此图操作,选择6,少了一个选项(210819更新);

6、接上面步骤4,选择7之后,马上会打印信息;

7、根据打印信息,选择Y,之后会打印新的信息,入图,选择第1个

8、此时不要着急,等待约2-3分钟的设备重启,然后端口会逐步启用;

9、等所有端口都起来了,就可以使用了。

Ps:不足之处验证:(当时太快了,缺截图,待完善)

另外:再补充一下,如需再次设置该端口密码,请执行:

<HUAWEI>sys
Enter system view, return user view with Ctrl+Z.
[HUAWEI]
[HUAWEI]user-interface console 0
[HUAWEI-ui-console0]au
[HUAWEI-ui-console0]authentication-mode password
[HUAWEI-ui-console0]set authentication password cipher ke@sswfj
[HUAWEI-ui-console0]return
<HUAWEI>save
The current configuration will be written to the device.
Are you sure to continue?[Y/N]Y
Info: Please input the file name ( *.cfg, *.zip ) [vrpcfg.zip]:
Aug 19 2021 15:50:12+08:00 HUAWEI DS/4/DATASYNC_CFGCHANGE:OID 1.3.6.1.4.1.2011.5.25.191.3.1 configurations have been changed. The current change number is 5, the change loop count is 0, and the maximum number of records is 4095.
Aug 19 2021 15:50:12+08:00 HUAWEI %%01CFM/4/SAVE(s)[0]:The user chose Y when deciding whether to save the configuration to the device.

附加配置网口隔离:

Press ENTER to get started.
<H3C>%Jan  1 02:12:30:673 2013 H3C SHELL/5/SHELL_LOGIN: TTY logged in from aux0.
<H3C>system-view							/*进入系统配置试图*/
System View: return to User View with Ctrl+Z.
[H3C]sysname H3CD						/*修改交换机名称*/
[H3CD]port-isolate group 1				/*端口隔离分组1*/
[H3CD]interface Ethernet 1/0/2			/*进入交换机端口2*/
[H3CD-Ethernet1/0/2]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-Ethernet1/0/2]quit					/*退出交换机端口*/
[H3CD]interface Ethernet 1/0/3			/*进入交换机端口3*/
[H3CD-Ethernet1/0/3]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-Ethernet1/0/3]quit					/*退出交换机端口*/
[H3CD]interface Ethernet 1/0/4			/*进入交换机端口4*/
[H3CD-Ethernet1/0/4]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-Ethernet1/0/4]quit					/*退出交换机端口*/
[H3CD]interface GigabitEthernet 1/0/5	/*进入千兆交换机端口5*/
[H3CD-GigabitEthernet1/0/5]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-GigabitEthernet1/0/5]quit			/*退出交换机端口*/
[H3CD]interface GigabitEthernet 1/0/6	/*进入千兆交换机端口6*/
[H3CD-GigabitEthernet1/0/6]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-GigabitEthernet1/0/6]quit			/*退出交换机端口*/
[H3CD]interface GigabitEthernet 1/0/7	/*进入千兆交换机端口7*/
[H3CD-GigabitEthernet1/0/7]port-isolate enable group 1	/*	配置到隔离组1	*/
[H3CD-GigabitEthernet1/0/7]quit			/*退出交换机端口*/
[H3CD]save

附加命令大全:

[FutureMatrix]?
System view commands:
  aaa                        AAA
  aaa-authen-bypass          Set remote authentication bypass
  aaa-author-bypass          Set remote authorization bypass
  aaa-author-cmd-bypass      Set remote command authorization bypass
  access-author              Access user author
  access-context             Access user context
  access-user                User access
  acl                        Specify ACL configuration information
  alarm                      Enter the alarm view
  anti-attack                Specify anti-attack configurations
  arp                        ARP module
  arp-miss                   ARP Miss
  arp-suppress               Specify arp suppress configuration information,
                             default is disabled
  as                         Access switch
  assign                     Assign resource
  assistant                  Assistant
  authentication             Authentication
  authentication-profile     Authentication profile
  authorization-info         Authorization information
  bpdu                       BPDU message
  btv                        Btv view
  bulk-stat                  Set bulk statistics
  capture-packet             Getting-packet
  card                       Card
  cfm                        Connectivity fault management
  check                      Check
  clear                      Clear configuration
  clock                      Specify the system clock
  cluster                    Specify the information for cluster configuration
  collect                    Collect
  command-privilege          Specify the command level
  configuration              Configuration
  configuration-occupied     Configuration exclusive occupied
  console0                   Primary user terminal interface
  control-down               Control link down cause user offline
  cpu-defend                 Configure CPU defend
  cpu-defend-policy          Configure CPU defend policy
  cpu-overload-control       Cpu-overload-control
  cpu-usage                  Set cpu usage configuration
  device-sensor              Device sensor
  dhcp                       Dynamic host configure protocol
  dhcp-snooping              DHCP snooping
  dhcpv6                     Dynamic host configure protocol for IPv6
  diagnose                   Enter the diagnose view
  display                    Display transceiver wavelength-map
  dldp                       Device link detection protocol
  dns                        Specify domain name system
  domain                     Default domain
  dot1x                      802.1x and mac-authen configuration information
  dot1x-access-profile       Dot1x access profile
  drop                       Discard attribute
  dsa                        Specify the module configurations
  easy-operation             Easy operation
  ecc                        Specify the module configurations
  efm                        EFM module
  emdi                       EMDI(Extended Media Delivery Index)
  erps                       Ethernet ring protection switching
  error-down                 The interface was shut down because of an error
                             event
  ethernet-loop-protection   Ethernet loop protection
  event                      Enter the event view
  execute                    Batch command
  fib                        FIB status and configuration information
  file                       Specify file system configuration information
  free                       Release a user terminal interface
  free-rule-template         Free rule template
  ftp                        Set the FTP server attributes
  garp                       Generic Attribute Registration Protocol
  gtsm                       The generalized TTL security mechanism
  gvrp                       Generic VLAN Registration Protocol
  haca-server                Configure HACA server template
  header                     Define the login banner
  hsb-group                  Configure HSB hot standby group
  hsb-resource               HSB resource
  hsb-service                Configure HSB hot standby service
  hsb-service-type           HSB service type
  http                       HTTP
  hwtacacs                   Set the status of the HWTACACS(Terminal Access
                             Controller Access Control System) service
  hwtacacs-server            Set HWTACACS server
  icmp                       Specify ICMP configuration information
  icmp-reply                 Enable ICMP reply fast
  igmp                       Specify IGMP configuration information
  igmp-snooping              Specify parameters for IGMP-Snooping
  ike                        Specify IKE(Internet Key Exchange) configuration
                             information
  ikev1                      Specify IKEv1(Internet key exchange V1)
                             configuration information
  ikev2                      Enable private payload
                             IKEV2_NOTIFY_DELETE_OLD_CHILDSA send
  info-center                Specify message output configuration information
  interface                  Enter interface command view
  ip                         IP information
  ipsec                      Specify IPSec(IP Security) configuration
                             information
  ipv4                       Configure ip packet
  ipv6                       Enable IPv6 functionality
  kerberos-snooping-profile  Kerberos snooping profile
  l2-topology                Layer 2 topology
  l2protocol-tunnel          Layer 2 protocol tunnel
  lacp                       Link aggregation control protocol
  lldp                       Link Layer Discovery Protocol
  lnp                        Link-type Negotiation Protocol
  load-balance               Specify load balance mode
  load-distribution          Load distribution
  log                        Log file
  log-threshold              Threshold and interval of log-threshold
  loopback-detect            Loopback detection function
  mac-access-profile         Mac access profile
  mac-address                MAC address
  mac-authen                 MAC authenticate configure information
  mac-forced-forwarding      MAC-Forced Forwarding
  mac-learning               MAC learning
  mac-spoofing-defend        MAC spoofing defend
  mad                        Multi-active detection
  management-plane           Management plane
  management-port            Management port
  matched                    Is undo command can be matched by upper template
  mib-data                   MIB data
  mld                        Specify MLD configuration information
  mld-snooping               Specify parameters for MLD-Snooping
  mmi-mode                   Machine-machine mode
  monitor-link               Monitor link configuration information
  msdp                       Specify MSDP(Multicast Source Discovery Protocol)
                             configuration information
  mtrace                     Trace route to multicast source
  multicast                  Multicast information
  multicast-mib              Specify multicast MIB configuration information
  multicast-snooping         Multicast-snooping
  nd                         Neighbor discovery
  ndp                        Neighbor discovery protocol
  netconf                    Netconf
  nqa                        Network Quality Analysis(NQA)
  nqa-jitter                 Switch NQA jitter version
  nqa-server                 Specify NQA echo server
  ntdp                       Network topology discovery protocol
  ntp-service                Specify NTP (Network Time Protocol) configuration
                             information
  oam-mgr                    Oam-mgr view
  observe-port               Specify Observe port
  ops                        OPS(Open Programmability System)
  ospf                       Open Shortest Path First (OSPF)
  ospfv3                     OSPF version 3 for IPv6
  otdr                       OTDR
  pim                        Specify PIM(Protocol Independent Multicast)
                             configuration information
  pim-ipv6                   PIM IPv6 status and configuration information
  ping                       Ping function
  pki                        Configure Public Key Infrastructure (PKI) module
                             information
  pnp                        Plug and play function
  pnp-button                 PNP button
  poe                        Power over Ethernet
  poe-power                  PoE power supply
  port                       Enter interface command view
  port-group                 Port-group
  port-isolate               Port isolate
  port-security              Port security
  portal                     PORTAL module
  portal-access-profile      Portal access profile
  pppoe                      PPPoE
  qos                        QoS configuration
  qos-car                    Committed access rate
  qos-shaping                Shaping rate
  quit                       Exit from current command view
  radius-server              Add or delete RADIUS server template
  refresh                    Refresh routes to I/O board
  remote-access-user         Remote user
  reset                      Clear running system information
  return                     Exit to user view
  rip                        RIP (Routing Information Protocol)
  ripng                      RIPng (Routing Information Protocol next
                             generation)
  rmon                       Specify RMON configuration
  rmon2                      Specify RMON2 configuration
  route                      Route priority
  route-policy               Route-policy
  route-policy-change        Specify route policy change parameter
  router                     Configure router information
  rps                        Set RPS status
  rrpp                       Rapid ring protection protocol
  rsa                        Specify RSA module configuration information
  run                        Execute command of user view
  s-ipfpm                    Simple IP FPM (IP Flow Performance Monitor)
  save                       Save
  savi                       Source Address Validation Improvement
  scp                        Set SCP server
  screen-width               Set screen width
  sea                        SEA(Service Experience Analysis)
  sep                        Smart ethernet protection
  set                        Set
  sflow                      SFlow module
  sftp                       Set SFTP service attribute
  slave                      Backup switch from master to slave
  sleep                      Sleeping mode
  smart-link                 Smart link module
  smart-upgrade              Smart-upgrade
  smi-server                 Switch maintance insight enable
  snmp-agent                 Snmp-agent
  ssh                        Set the SSH (secure shell) configuration attribute
  ssl                        Security socket layer
  stack                      Stack
  stack-port                 Stack port
  static-user                Static user
  stelnet                    Set Stelnet service attribute
  stp                        Specify Spanning Tree Protocol (STP) configuration
                             information
  super                      Modify super password parameters
  suppression                Suppression, include broadcast-suppression,
                             multicast-suppression and unicast-suppression
  sys-netid                  System-netid
  sysname                    Specify the host name
  tcp                        Specify TCP(Transmission Control Protocol)
                             configuration information
  telnet                     Set the status of the Telnet service
  temperature                Device temperature
  test-aaa                   Accounts test
  test-packet                Set the test packet
  tftp                       Establish a TFTP connection
  tftp-server                TFTP server
  time-range                 Specify time-range configuration information
  trace                      Trace log
  tracert                    Trace route to host
  traffic                    Specify traffic configuration information
  traffic-filter             Filter packets based on ACL
  traffic-limit              Limit the rate of the packets based on ACL
  traffic-mirror             Mirror packets based on ACL
  traffic-policy             Apply specific traffic policy
  traffic-redirect           Redirect packets based on ACL
  traffic-remark             Remark packets based on ACL
  traffic-secure             Security filter packets based on ACL
  traffic-statistic          Count packets based on ACL
  transceiver                Transceiver
  ucl-group                  User acl group
  undo                       Cancel current configuration
  upgrade                    Software upgrade
  url-template               Url template
  user-bind                  User bind
  user-detect                Setting of user detect
  user-interface             Configure the user terminal interface
  user-sync                  Setting of user sync
  vcmp                       VLAN Central Management Protocol
  vlan                       Virtual LAN
  voice-vlan                 Voice VLAN
  web                        Web
  web-auth-server            Portal authentication server


×
打赏作者
最新回复 (0)
只看楼主
全部楼主
返回