How to stop password recovery on a Cisco router

Asset 6

Disabling password recovery on a Cisco router

Posted on 29 January 2020 by Beaming Support

By default, all Cisco Routers and Switches allow the user to recover the password and configuration, this poses an obvious security risk that could be exploited by a malicious user.

However this can be mitigated with the below command as it disables the password recovery option.

Router(config)# no service password-recovery

WARNING:

Executing this command will disable password recovery mechanism.

Do not execute this command without another plan for

password recovery.

Are you sure you want to continue? [yes/no]: y

Router(config)#

 

After enabling this command even if the malicious user were to have physical access to the network equipment, they would not be able to progress any further.

 

Time saving tech tips

Subscribe below and we’ll send you a monthly email update of our latest how-to guides, cyber security news and tips that save time for techs.

  • This field is for validation purposes and should be left unchanged.

Subscribe & get our Five Years in Cyber Security Guide

We’ll pop up in your inbox once a month with:

  • Cyber security guidance for users of all ability levels
  • FAQs from our technical support desk
  • Quick tips that boost efficiency & productivity

And we’ll send you our Five Years in Cyber Security Guide for free, as soon as you sign up.

  • This field is for validation purposes and should be left unchanged.

Five Years in Cyber Security Ebook