Cisco Cisco IPS 4255 Sensor 릴리즈 노트

Verify the state of password recovery by using the include keyword to show settings in a filtered output:

sensor(config-hos)# show settings | include password

   password-recovery: allowed <defaulted>

sensor(config-hos)#

To troubleshoot password recovery, pay attention to the following:

You cannot determine whether password recovery has been disabled in the sensor configuration 
from the ROMMON prompt, GRUB menu, switch CLI, or router CLI. If password recovery is 
attempted, it always appears to succeed. If it has been disabled, the password is not reset to cisco. 
The only option is to reimage the sensor.

You can disable password recovery in the host configuration. For the platforms that use external 
mechanisms, such as the NM CIDS bootloader, ROMMON, and the maintenance partition for the 
IDSM2, although you can run commands to clear the password, if password recovery is disabled in 
the IPS, the IPS detects that password recovery is not allowed and rejects the external request.

To check the state of password recovery, use the show settings | include password command. 

When performing password recovery for the NM CIDS, do not use the reboot command to restart 
the NM CIDS. This causes the recovery action to be ignored. Use the boot disk command.

When performing password recovery on the IDSM2, you see the following message: 

Upgrading 

will wipe out the contents on the storage media

. You can ignore this message. Only the 

password is reset when you use the specified password recovery image.

For information on reimaging the sensor, refer to 

.

For more information on when and how to disable password recovery, see 

For the procedure to verify the state of password recovery, see 

This section describes the Bug Toolkit, lists the resolved and known caveats, and contains the following 
topics: