In situations where the administrator password is lost or forgotten, you can manually reset the password through the Command Line Interface (CLI) of the switch. This requires a physical connection to the console port of the device so that the user can power cycle the switch, enter the boot menu, and start the password recovery procedure. This procedure allows the user to login to the device without password authentication.
The objective of this document is to show you how to recover and configure the administrator password for Sx300, Sx350, SG350X, Sx500, and Sx550X Series Switches.
Cisco 200 Series Small Business Managed Switches do not support the CLI.
The password recovery procedure is the same for all software versions. It is not dependent on a specific software version.
If you don't have any configurations that you need to save (or you have backed up your configurations), you can perform a factory reset. Simply press the Reset button for more than 10 seconds using an open paperclip. This will reset the switch to the default password of cisco.
Step 1. Access the CLI via a local console connection. For more information on how to access the CLI in this manner, please refer to Access the CLI for 300 and 500 Switches via PuTTY Using a Console Connection.
You must have access to the local console connection to recover the administrator password. You cannot recover the administrator password remotely from a Telnet or Secure Shell (SSH) session to the management interface.
Step 2. Power cycle the switch by unplugging the power cord and plugging it back in to the back of the device. After a couple of seconds you should see the Cisco ASCII logo with a prompt to escape the Autoboot loader. Press Return or Esc immediately to enter the Startup Menu.
Power cycle with the console cable and Putty connected. If the device goes into Autoboot sequence, you can reattempt to enter the Startup Menu by power cycling the device again.
The Startup Menu appears:
Step 3. Press 3 to select option [3] Password Recovery Procedure. This will reset the password to null.
Step 4. Press Enter to go back to the Startup Menu, and then press Esc to exit. This will start the Autoboot sequence.
It is important to follow the sequence mentioned in Steps 3 and 4.
Step 5. After the switch has fully booted, you will be in password recovery mode. However, before changing any usernames or passwords, enter the following commands to avoid overwriting the existing configuration on the switch:
Switch#enable
Switch#copy startup-config running-config
In order to use backspace in the CLI, use the arrow keys to highlight the desired character and then hit Backspace to delete the character. You can also hold down Backspace to continuously delete characters to the right of the highlighted cursor.
Step 6. In order to change the administrator password, you must enter configuration mode. To enter configuration mode, enter one of the following commands based on your access level:
Switch#configuration terminal
Step 7. Enter the following command to change the password of any given user:
Switch(config)#username<new or previous username> privilege 15 password <new password>
Default password complexity settings require that the password contain at least 3 character classes such as a capital letter, a lowercase letter, and a number.
The command in the screenshot above sets the password for username1 to Password1. If username1 does not exist as a user on the switch, a new user account is created.
Step 8. Enter the following commands to exit configuration mode and write to the configuration file.
Switch(config)# exit
Switch# write
Step 9. Enter Y to overwrite the startup configuration file.
Step 10. Enter the following command to reboot the system so that you can log in with your newly configured username and password:
Switch# reload
Step 11. Enter Y to continue. Your device will then reboot.