Monday, August 30, 2010

Lost Admin Password for Juniper Netscreen/SSG

This is a last resort to restoring a Netscreen/SSG to factory default settings if the administrative password has been lost. Note: This will remove your configuration and reset the device to factory default settings.


Items Needed:
Laptop
Serial Console Cable w/ RJ-45 End
Crossover (PC -> PC) Ethernet Cable
Serial Number (from sticker on back of the Netscreen/SSG device)


Device Recovery:
1) Console Connection (Console -> Hyperterm -> Baud Rate 9600 & Flow = None -> Enter)
2) Username/Password = Serial # / Serial #
3) Yes / Yes
4) Reset Device
5) Login with netscreen/netscreen @ 192.168.1.1 (factory default IP)
(Ethernet -> Laptop -> Trust Interface -> Set your laptop laptop = 192.168.1.2, and browse to the firewall at 192.168.1.1).


Reconfigure Basic Access
Then use the GUI or CLI to reconfigure the Untrust interface and default gateway for outside access.
set interface "ethernet0" zone "Untrust"
set interface ethernet0 ip 1.1.1.2/24
set interface ethernet0 route
set interface ethernet0 ip manageable
set interface ethernet0 manage-ip 1.1.1.2
set interface ethernet0 manage scs
set interface ethernet0 manage ssl
set interface ethernet0 manage web
set scs enable
set route 0.0.0.0/0 interface ethernet0 gateway 1.1.1.1



Posted by Blogger at 11:11 PM
Labels:

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)