Disabling password recovery on a Cisco routerPosted on 29 January 2020 by Beaming Support
By default, all Cisco Routers and Switches allow the user to recover the password and configuration, this poses an obvious security risk that could be exploited by a malicious user.
However this can be mitigated with the below command as it disables the password recovery option.
Router(config)# no service password-recovery
Executing this command will disable password recovery mechanism.
Do not execute this command without another plan for
Are you sure you want to continue? [yes/no]: y
After enabling this command even if the malicious user were to have physical access to the network equipment, they would not be able to progress any further.
Time saving tech tips
Subscribe below and we’ll send you a monthly email update of our latest how-to guides, cyber security news and tips that save time for techs.