3 Replies Latest reply: Mar 26, 2013 5:12 AM by PhilM RSS

    Admin password (recovery option)

    alex_vani

      Hi I've lost the admin password for my McAfee Firewall in version 8.2.1. we have changed it, but now, we are not able to login, now, we're stuck.

       

      Hi, I've been reading how to recover the admin password.  are these steps correct?

       

      1.-  Reboot the firewall,

      2.- Select Emergency Maintenance Mode Shell.

      3.- Enter the following command.

             cf adminuser modify username=admin password=newpassword123

       

      Does the command will change the admin password to the newpassword123?

       

      Or it is necessary to add a  new admin user?, proceed to login with this new admin user account, and then change the previous admin password, which was previously lost?

       

      Thanks for your help.

        • 1. Re: Admin password (recovery option)
          PhilM
          Or it is necessary to add a  new admin user?, proceed to login with this new admin user account, and then change the previous admin password, which was previously lost?

           

          No, the modify element in the command is there to allow you to modify an exisiting admin account. I would suggest, maybe, that when you have regained access, create a second admin account and lock its credentials away in a safe place.

           

          Then if you find yourself in this same situation again, you can use the second account to rescue the first without needed to resort to the Emergency Maintenance Shell.

           

          -Phil

          • 2. Re: Admin password (recovery option)
            alex_vani

            Thanks Phil,

             

            We will proceed the way you just suggested.

             

            By the way, is it possible at this point  (Emergency mode) to create an additional admin account, with full privileges to manage the firewall? 

            For running the srole command and the whole administrative commands, super-user commands, for administrative tasks.?

             

            Thank you very much.

            • 3. Re: Admin password (recovery option)
              PhilM
              By the way, is it possible at this point  (Emergency mode) to create an additional admin account, with full privileges to manage the firewall?

               

              I don't see any reason why not - the cf adminuser command can be entered with the "add" switch to create a new account.

               

              cf adminuser add username=admin2 password=<password_value> directory=/home/admin2 role=admin

               

              This should create an account called "admin2", assign the password value as entered and create a home directory called "admin2" under the "home" branch.

               

              If you log into a command prompt and enter man cf_adminuser you can see all of the settings available to you.

               

              -Phil.