Cisco ASA 5505 Password Issue

[columbusdjkc]

Hello,
I am the owner of a CPA firm. My IT guy was recently fired and we seem to be having some issues with our routers. However the only thing that he gave me was some sort of a wierd config file with passwords that don't look right. I'm just trying to figure out how we can get into our router. I am putting an example copy of this file. If any of you have any idea what this thing is please let me know.


:
: vpngroup Agni87-P3e password k8I93*9231b
: vpngroup U$er_n1 password k8I93*9231b
: vpngroup U$er_n2 password 3cne8*-9ns4
: vpngroup U$er_n3 password l3hd6*nvb3
: vpngroup U$er_n4 password 19cbTTred8
: vpngroup U$er_n5 password Lmnb67-3sb
: vpngroup U$er_n6 password 93nhcfUUnE
: vpngroup Fr@nkL4n1 password 834nd**ihJJur **Franklin PC
:
: Saved
: Written by enable_15 at 16:35:46.819 CDT Thu Oct 18 2007
!
ASA Version 7.2(3)
!
hostname brewer-bryan
domain-name bepcocpa.com
enable password 168.1.12 smtp ne level 0 encrypted
enable password k 255.255.255.25 level 1 encrypted
enable password 0 level 2 encrypted
enable password n09zn77oCBDTlw4D encrypted
names
!
interface Vlan1
nameif LAN
security-level 100
ip address 192.168.1.1 255.255.255.0
!
interface Vlan2
nameif Internet
security-level 0
ip address (edited)
!
interface Vlan3
shutdown
no forward interface Vlan1
nameif dmz
security-level 50
no ip address
!
interface Ethernet0/0
switchport access vlan 2
!
interface Ethernet0/1
!
interface Ethernet0/2
!
interface Ethernet0/3
!
interface Ethernet0/4
!
interface Ethernet0/5
!
interface Ethernet0/6
!
interface Ethernet0/7
!
passwd 2fHfI5/Q3BjgNtvx encrypted
boot system disk0:/asa723-k8.bin

 

[burtsbees]

Try
router>en
router#conf t
router(config)#no service password-en

Those passwords are all encrypted with an MD5 hash---impossible to reverse. The no service pass-en may do it, but this is an ASA, so I am not sure...you may just have to rewrite the passwords.

Burt

 

[columbusdjkc]

How do you get into these routers? If I get the password reset is there an easy way to administrate these routers? Is it just telnetting into it? Basically what's going on is I have to buy another asa router because one of our satallite offices routers went down. I will have to set it up to vlan again and I'm not sure how to get into these to do it?

 

[burtsbees]

With ASDM (GUI tool) or a console cable (rollover DB-9 to RJ45).

Burt

 

[columbusdjkc]

Ok so I've managed to be able to get into the router through telnet. But using the same password I'm not able to get in through the web interface (

https://192.168.1.1)

Is there a particular user to get into that? Or some way through telnet to reset that particular web user or how do I get in there?

 

[columbusdjkc]

and is the web browser thing on 192.168.1.1 is that ASDM? Or is ASDM a download that I need to download I need to get from somewhere?

 

[burtsbees]

ASDM is a tool that is downloaded from Cisco---it used to be free, so you may luck out. It also may help to post this is the PIX forum.

Burt