Disabling password recovery on a Cisco router

By default, all Cisco Routers and Switches allow the user to recover the password and configuration, this poses an obvious security risk that could be exploited by a malicious user.

However this can be mitigated with the below command as it disables the password recovery option.

Router(config)# no service password-recovery

WARNING:

Executing this command will disable password recovery mechanism.

Do not execute this command without another plan for

password recovery.

Are you sure you want to continue? [yes/no]: y

Router(config)#

After enabling this command even if the malicious user were to have physical access to the network equipment, they would not be able to progress any further.

Cloud WiFi

Secure WiFi that’s separate from your core network and offers a range of features that benefit your business.

Time saving tech tips

Subscribe below and we’ll send you a monthly email update of our latest how-to guides, cyber security news and tips that save time for techs.

More like this

Internet & connectivity

How to stop password recovery on a Cisco router

Disabling password recovery on a Cisco router

Cloud WiFi

Time saving tech tips

More like this

Cisco Auto State

Combining 2 Switch ports together to increase bandwidth

Why you need a route map on a NAT statement

What do I need to include in my Cisco login banner?

Configuring basic HSRP

Understanding the Spanning Tree Protocol (STP)

Subscribe & get our Five Years in Cyber Security Guide