华为s5720-S5735 console口密码重置
华为s5720-S5735 console口密码重置
现场问题描述:
某公司仓库C1库1F挂壁机柜S5720设备
如图,设备无法通过console口登录?原始密码未知
如何破解-----查看现场网络环境和查阅资料后决定破解密码。
★想到办法,立马开干,第一步先了解一下生产环境,确认设备可以断电,可以调试,打好招呼了开始干活。
---------------------------------步骤LIST-------------------------------------
1、通过Console口连接交换机,切断电源,重启设备;
2、当界面出现以下打印内容时候,快速按下“ctrl+B”;
3、并输入BootRom密码:Admin@huawei.com;
4、根据打印信息,选择第7条,清除console口用户密码;
5、新版本S5735系列,根据此图操作,选择6,少了一个选项(210819更新);
6、接上面步骤4,选择7之后,马上会打印信息;
7、根据打印信息,选择Y,之后会打印新的信息,入图,选择第1个
8、此时不要着急,等待约2-3分钟的设备重启,然后端口会逐步启用;
9、等所有端口都起来了,就可以使用了。
Ps:不足之处验证:(当时太快了,缺截图,待完善)
另外:再补充一下,如需再次设置该端口密码,请执行:
<HUAWEI>sys Enter system view, return user view with Ctrl+Z. [HUAWEI] [HUAWEI]user-interface console 0 [HUAWEI-ui-console0]au [HUAWEI-ui-console0]authentication-mode password [HUAWEI-ui-console0]set authentication password cipher ke@sswfj [HUAWEI-ui-console0]return <HUAWEI>save The current configuration will be written to the device. Are you sure to continue?[Y/N]Y Info: Please input the file name ( *.cfg, *.zip ) [vrpcfg.zip]: Aug 19 2021 15:50:12+08:00 HUAWEI DS/4/DATASYNC_CFGCHANGE:OID 1.3.6.1.4.1.2011.5.25.191.3.1 configurations have been changed. The current change number is 5, the change loop count is 0, and the maximum number of records is 4095. Aug 19 2021 15:50:12+08:00 HUAWEI %%01CFM/4/SAVE(s)[0]:The user chose Y when deciding whether to save the configuration to the device.
附加配置网口隔离:
Press ENTER to get started. <H3C>%Jan 1 02:12:30:673 2013 H3C SHELL/5/SHELL_LOGIN: TTY logged in from aux0. <H3C>system-view /*进入系统配置试图*/ System View: return to User View with Ctrl+Z. [H3C]sysname H3CD /*修改交换机名称*/ [H3CD]port-isolate group 1 /*端口隔离分组1*/ [H3CD]interface Ethernet 1/0/2 /*进入交换机端口2*/ [H3CD-Ethernet1/0/2]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-Ethernet1/0/2]quit /*退出交换机端口*/ [H3CD]interface Ethernet 1/0/3 /*进入交换机端口3*/ [H3CD-Ethernet1/0/3]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-Ethernet1/0/3]quit /*退出交换机端口*/ [H3CD]interface Ethernet 1/0/4 /*进入交换机端口4*/ [H3CD-Ethernet1/0/4]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-Ethernet1/0/4]quit /*退出交换机端口*/ [H3CD]interface GigabitEthernet 1/0/5 /*进入千兆交换机端口5*/ [H3CD-GigabitEthernet1/0/5]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-GigabitEthernet1/0/5]quit /*退出交换机端口*/ [H3CD]interface GigabitEthernet 1/0/6 /*进入千兆交换机端口6*/ [H3CD-GigabitEthernet1/0/6]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-GigabitEthernet1/0/6]quit /*退出交换机端口*/ [H3CD]interface GigabitEthernet 1/0/7 /*进入千兆交换机端口7*/ [H3CD-GigabitEthernet1/0/7]port-isolate enable group 1 /* 配置到隔离组1 */ [H3CD-GigabitEthernet1/0/7]quit /*退出交换机端口*/ [H3CD]save
附加命令大全:
[FutureMatrix]? System view commands: aaa AAA aaa-authen-bypass Set remote authentication bypass aaa-author-bypass Set remote authorization bypass aaa-author-cmd-bypass Set remote command authorization bypass access-author Access user author access-context Access user context access-user User access acl Specify ACL configuration information alarm Enter the alarm view anti-attack Specify anti-attack configurations arp ARP module arp-miss ARP Miss arp-suppress Specify arp suppress configuration information, default is disabled as Access switch assign Assign resource assistant Assistant authentication Authentication authentication-profile Authentication profile authorization-info Authorization information bpdu BPDU message btv Btv view bulk-stat Set bulk statistics capture-packet Getting-packet card Card cfm Connectivity fault management check Check clear Clear configuration clock Specify the system clock cluster Specify the information for cluster configuration collect Collect command-privilege Specify the command level configuration Configuration configuration-occupied Configuration exclusive occupied console0 Primary user terminal interface control-down Control link down cause user offline cpu-defend Configure CPU defend cpu-defend-policy Configure CPU defend policy cpu-overload-control Cpu-overload-control cpu-usage Set cpu usage configuration device-sensor Device sensor dhcp Dynamic host configure protocol dhcp-snooping DHCP snooping dhcpv6 Dynamic host configure protocol for IPv6 diagnose Enter the diagnose view display Display transceiver wavelength-map dldp Device link detection protocol dns Specify domain name system domain Default domain dot1x 802.1x and mac-authen configuration information dot1x-access-profile Dot1x access profile drop Discard attribute dsa Specify the module configurations easy-operation Easy operation ecc Specify the module configurations efm EFM module emdi EMDI(Extended Media Delivery Index) erps Ethernet ring protection switching error-down The interface was shut down because of an error event ethernet-loop-protection Ethernet loop protection event Enter the event view execute Batch command fib FIB status and configuration information file Specify file system configuration information free Release a user terminal interface free-rule-template Free rule template ftp Set the FTP server attributes garp Generic Attribute Registration Protocol gtsm The generalized TTL security mechanism gvrp Generic VLAN Registration Protocol haca-server Configure HACA server template header Define the login banner hsb-group Configure HSB hot standby group hsb-resource HSB resource hsb-service Configure HSB hot standby service hsb-service-type HSB service type http HTTP hwtacacs Set the status of the HWTACACS(Terminal Access Controller Access Control System) service hwtacacs-server Set HWTACACS server icmp Specify ICMP configuration information icmp-reply Enable ICMP reply fast igmp Specify IGMP configuration information igmp-snooping Specify parameters for IGMP-Snooping ike Specify IKE(Internet Key Exchange) configuration information ikev1 Specify IKEv1(Internet key exchange V1) configuration information ikev2 Enable private payload IKEV2_NOTIFY_DELETE_OLD_CHILDSA send info-center Specify message output configuration information interface Enter interface command view ip IP information ipsec Specify IPSec(IP Security) configuration information ipv4 Configure ip packet ipv6 Enable IPv6 functionality kerberos-snooping-profile Kerberos snooping profile l2-topology Layer 2 topology l2protocol-tunnel Layer 2 protocol tunnel lacp Link aggregation control protocol lldp Link Layer Discovery Protocol lnp Link-type Negotiation Protocol load-balance Specify load balance mode load-distribution Load distribution log Log file log-threshold Threshold and interval of log-threshold loopback-detect Loopback detection function mac-access-profile Mac access profile mac-address MAC address mac-authen MAC authenticate configure information mac-forced-forwarding MAC-Forced Forwarding mac-learning MAC learning mac-spoofing-defend MAC spoofing defend mad Multi-active detection management-plane Management plane management-port Management port matched Is undo command can be matched by upper template mib-data MIB data mld Specify MLD configuration information mld-snooping Specify parameters for MLD-Snooping mmi-mode Machine-machine mode monitor-link Monitor link configuration information msdp Specify MSDP(Multicast Source Discovery Protocol) configuration information mtrace Trace route to multicast source multicast Multicast information multicast-mib Specify multicast MIB configuration information multicast-snooping Multicast-snooping nd Neighbor discovery ndp Neighbor discovery protocol netconf Netconf nqa Network Quality Analysis(NQA) nqa-jitter Switch NQA jitter version nqa-server Specify NQA echo server ntdp Network topology discovery protocol ntp-service Specify NTP (Network Time Protocol) configuration information oam-mgr Oam-mgr view observe-port Specify Observe port ops OPS(Open Programmability System) ospf Open Shortest Path First (OSPF) ospfv3 OSPF version 3 for IPv6 otdr OTDR pim Specify PIM(Protocol Independent Multicast) configuration information pim-ipv6 PIM IPv6 status and configuration information ping Ping function pki Configure Public Key Infrastructure (PKI) module information pnp Plug and play function pnp-button PNP button poe Power over Ethernet poe-power PoE power supply port Enter interface command view port-group Port-group port-isolate Port isolate port-security Port security portal PORTAL module portal-access-profile Portal access profile pppoe PPPoE qos QoS configuration qos-car Committed access rate qos-shaping Shaping rate quit Exit from current command view radius-server Add or delete RADIUS server template refresh Refresh routes to I/O board remote-access-user Remote user reset Clear running system information return Exit to user view rip RIP (Routing Information Protocol) ripng RIPng (Routing Information Protocol next generation) rmon Specify RMON configuration rmon2 Specify RMON2 configuration route Route priority route-policy Route-policy route-policy-change Specify route policy change parameter router Configure router information rps Set RPS status rrpp Rapid ring protection protocol rsa Specify RSA module configuration information run Execute command of user view s-ipfpm Simple IP FPM (IP Flow Performance Monitor) save Save savi Source Address Validation Improvement scp Set SCP server screen-width Set screen width sea SEA(Service Experience Analysis) sep Smart ethernet protection set Set sflow SFlow module sftp Set SFTP service attribute slave Backup switch from master to slave sleep Sleeping mode smart-link Smart link module smart-upgrade Smart-upgrade smi-server Switch maintance insight enable snmp-agent Snmp-agent ssh Set the SSH (secure shell) configuration attribute ssl Security socket layer stack Stack stack-port Stack port static-user Static user stelnet Set Stelnet service attribute stp Specify Spanning Tree Protocol (STP) configuration information super Modify super password parameters suppression Suppression, include broadcast-suppression, multicast-suppression and unicast-suppression sys-netid System-netid sysname Specify the host name tcp Specify TCP(Transmission Control Protocol) configuration information telnet Set the status of the Telnet service temperature Device temperature test-aaa Accounts test test-packet Set the test packet tftp Establish a TFTP connection tftp-server TFTP server time-range Specify time-range configuration information trace Trace log tracert Trace route to host traffic Specify traffic configuration information traffic-filter Filter packets based on ACL traffic-limit Limit the rate of the packets based on ACL traffic-mirror Mirror packets based on ACL traffic-policy Apply specific traffic policy traffic-redirect Redirect packets based on ACL traffic-remark Remark packets based on ACL traffic-secure Security filter packets based on ACL traffic-statistic Count packets based on ACL transceiver Transceiver ucl-group User acl group undo Cancel current configuration upgrade Software upgrade url-template Url template user-bind User bind user-detect Setting of user detect user-interface Configure the user terminal interface user-sync Setting of user sync vcmp VLAN Central Management Protocol vlan Virtual LAN voice-vlan Voice VLAN web Web web-auth-server Portal authentication server
最新回复 (0)