Fos 740 Pwrecoverynotes

FOR BROCADE INTERNAL USE ONLY
TROUBLESHOOTING GUIDE
Brocade Fabric OS Password Recovery

Notes
Supporting Fabric OS 7.x 6.x 5.x 4.x 3.x 2.6.x
53-1000114-10
08 April 2016
2016, Brocade Communications Systems, Inc. All Rights Reserved.
Brocade, Brocade Assurance, the B-wing symbol, ClearLink, DCX, Fabric OS, HyperEdge, ICX, MLX, MyBrocade, OpenScript, VCS, VDX, Vplane, and
Vyatta are registered trademarks, and Fabric Vision is a trademark of Brocade Communications Systems, Inc., in the United States and/or in other
countries. Other brands, products, or service names mentioned may be trademarks of others.
Notice: This document is for informational purposes only and does not set forth any warranty, expressed or implied, concerning any equipment,
equipment feature, or service offered or to be offered by Brocade. Brocade reserves the right to make changes to this document at any time, without
notice, and assumes no responsibility for its use. This informational document describes features that may not be currently available. Contact a Brocade
sales office for information on feature and product availability. Export of technical data contained in this document may require an export license from the
United States government.
The authors and Brocade Communications Systems, Inc. assume no liability or responsibility to any person or entity with respect to the accuracy of this
document or any loss, cost, liability, or damages arising from the information contained herein or the computer programs that accompany it.
The product described by this document may contain open source software covered by the GNU General Public License or other open source license
agreements. To find out which open source software is included in Brocade products, view the licensing terms applicable to the open source software, and
obtain a copy of the programming source code, please visit http://www.brocade.com/support/oscd.
Brocade Fabric OS Password Recovery Notes

2 53-1000114-10
Contents
Preface.......................................................................................................................................................................................................................................................................................... 5
Document conventions............................................................................................................................................................................................................................................. 5
Text formatting conventions......................................................................................................................................................................................................................... 5
Command syntax conventions................................................................................................................................................................................................................... 5
Notes, cautions, and warnings.....................................................................................................................................................................................................................6
Brocade resources....................................................................................................................................................................................................................................................... 6
Contacting Brocade Technical Support........................................................................................................................................................................................................... 6
Brocade customers........................................................................................................................................................................................................................................... 6
Brocade OEM customers.............................................................................................................................................................................................................................. 7
Document feedback.................................................................................................................................................................................................................................................... 7
Fabric OS password recovery notes............................................................................................................................................................................................................................9

Password recovery overview................................................................................................................................................................................................................................. 9
Password recovery for Fabric OS 2.6.x and 3.x............................................................................................................................................................................... 9
Password recovery for Fabric OS 4.x and later ..............................................................................................................................................................................10
Password recovery using root account.......................................................................................................................................................................................................... 10
Password recovery using Password Recovery firmware....................................................................................................................................................................... 11
Password recovery for Fabric OS v2.6.x and v3.x...........................................................................................................................................................................11
Password recovery using the Boot PROM interface........................................................................................................................................................................................15

Password recovery using the Boot PROM interface..............................................................................................................................................................................15
Obtaining the boot PROM recovery password ...............................................................................................................................................................................17
Removing the boot PROM password...................................................................................................................................................................................................18
Password recovery for Fabric OS 4.4.0........................................................................................................................................................................................................ 18
Before logging in as root.............................................................................................................................................................................................................................. 18
After recovering the passwords ............................................................................................................................................................................................................... 19
Password recovery procedure: quick reference.........................................................................................................................................................................................19
Password recovery procedure for Brocade 200E, 4900, 5000, 7500, and 7600 switches................................................................................... 20
Password recovery procedure for Brocade 12000, 24000, and 48000 switches............................................................................................................21
Password recovery procedure for Brocade 3250, 3850, 3900, and 4100 switches..................................................................................................... 24
Password recovery procedure for Brocade 300, 5100, 5300, VA-40FC, 6505, 6510, and 6520 switches and the Brocade Encryption Switch
..........................................................................................................................................................................................................................................................................25
Password recovery procedure for Brocade DCX, DCX-4S, DCX 8510-8, and DCX 8510-4......................................................................................27
Password recovery procedure for Brocade 7800 switch..................................................................................................................................................................29
Password recovery procedure for Brocade 7840 switch and Brocade Analytics Monitoring Platform.................................................................. 31

53-1000114-10 3

4 53-1000114-10
Preface
Document conventions.....................................................................................................................................................................................................5
Brocade resources...............................................................................................................................................................................................................6
Contacting Brocade Technical Support...................................................................................................................................................................6
Document feedback............................................................................................................................................................................................................7
Document conventions
The document conventions describe text formatting conventions, command syntax conventions, and important notice formats used in
Brocade technical documentation.
Text formatting conventions

Text formatting conventions such as boldface, italic, or Courier font may be used in the flow of the text to highlight specific words or
phrases.
Format Description
bold text Identifies command names
Identifies keywords and operands
Identifies the names of user-manipulated GUI elements
Identifies text to enter at the GUI

italic text Identifies emphasis
Identifies variables and modifiers
Identifies paths and Internet addresses
Identifies document titles

Courier font Identifies CLI output
Identifies command syntax examples
Command syntax conventions

Bold and italic text identify command syntax components. Delimiters and operators define groupings of parameters and their logical
relationships.
Convention Description
bold text Identifies command names, keywords, and command options.
italic text Identifies a variable.
value In Fibre Channel products, a fixed value provided as input to a command option is printed in plain text, for
example, --show WWN.
[] Syntax components displayed within square brackets are optional.
Default responses to system prompts are enclosed in square brackets.

{x|y|z} A choice of required parameters is enclosed in curly brackets separated by vertical bars. You must select
one of the options.
In Fibre Channel products, square brackets may be used instead for this purpose.
x|y A vertical bar separates mutually exclusive elements.

53-1000114-10 5
Preface
Convention Description
<> Nonprinting characters, for example, passwords, are enclosed in angle brackets.
... Repeat the previous element, for example, member[member...].
\ Indicates a soft line break in command examples. If a backslash separates two lines of a command
input, enter the entire command at the prompt without the backslash.
Notes, cautions, and warnings

Notes, cautions, and warning statements may be used in this document. They are listed in the order of increasing severity of potential
hazards.
NOTE
A Note provides a tip, guidance, or advice, emphasizes important information, or provides a reference to related information.
ATTENTION
An Attention statement indicates a stronger note, for example, to alert you when traffic might be interrupted or the device might
reboot.
CAUTION
A Caution statement alerts you to situations that can be potentially hazardous to you or cause damage to hardware, firmware,
software, or data.
DANGER
A Danger statement indicates conditions or situations that can be potentially lethal or extremely hazardous to you. Safety labels
are also attached directly to products to warn of these conditions or situations.
Brocade resources
Visit the Brocade website to locate related documentation for your product and additional Brocade resources.
You can download additional publications supporting your product at www.brocade.com. Select the Brocade Products tab to locate your
product, then click the Brocade product name or image to open the individual product page. The user manuals are available in the
resources module at the bottom of the page under the Documentation category.
To get up-to-the-minute information on Brocade products and resources, go to MyBrocade. You can register at no cost to obtain a user
ID and password.
Release notes are available on MyBrocade under Product Downloads.
White papers, online demonstrations, and data sheets are available through the Brocade website.
Contacting Brocade Technical Support

As a Brocade customer, you can contact Brocade Technical Support 24x7 online, by telephone, or by e-mail. Brocade OEM customers
contact their OEM/Solutions provider.
Brocade customers
For product support information and the latest information on contacting the Technical Assistance Center, go to http://
www.brocade.com/services-support/index.html.

6 53-1000114-10
Preface
If you have purchased Brocade product support directly from Brocade, use one of the following methods to contact the Brocade
Technical Assistance Center 24x7.
Online Telephone E-mail

Preferred method of contact for non-urgent Required for Sev 1-Critical and Sev 2-High support@brocade.com
issues: issues:
Please include:
My Cases through MyBrocade Continental US: 1-800-752-8061
Problem summary
Software downloads and licensing Europe, Middle East, Africa, and Asia
Serial number
tools Pacific: +800-AT FIBREE (+800 28
34 27 33) Installation details
Knowledge Base
For areas unable to access toll free Environment description
number: +1-408-333-6061
Toll-free numbers are available in

many countries.
Brocade OEM customers

If you have purchased Brocade product support from a Brocade OEM/Solution Provider, contact your OEM/Solution Provider for all of
your product support needs.
OEM/Solution Providers are trained and certified by Brocade to support Brocade products.
Brocade provides backline support for issues that cannot be resolved by the OEM/Solution Provider.
Brocade Supplemental Support augments your existing OEM support contract, providing direct access to Brocade expertise.
For more information, contact Brocade or your OEM.
For questions regarding service levels and response times, contact your OEM/Solution Provider.
Document feedback
To send feedback and report errors in the documentation you can use the feedback form posted with the document or you can e-mail
the documentation team.
Quality is our first concern at Brocade and we have made every effort to ensure the accuracy and completeness of this document.
However, if you find an error or an omission, or you think that a topic needs further development, we want to hear from you. You can
provide feedback in two ways:
Through the online feedback form in the HTML documents posted on www.brocade.com.
By sending your feedback to documentation@brocade.com.
Provide the publication title, part number, and as much detail as possible, including the topic heading and page number if applicable, as
well as your suggestions for improvement.

53-1000114-10 7
Preface

8 53-1000114-10
Fabric OS password recovery notes

Password recovery overview......................................................................................................................................................................................... 9
Password recovery using root account..................................................................................................................................................................10
Password recovery using Password Recovery firmware...............................................................................................................................11
Password recovery overview

Several methods exist for recovering passwords on a Brocade Fabric OS switch or director. The correct approach depends on the
version of Fabric OS you are using, which passwords you have, and on the hardware platform you are using.
When attempting to recover a password through a serial cable to the console, always save the output by using the capture functionality
under Windows, or the script functionality for UNIX or Linux.
Table 1 lists the procedures described in this document and the conditions under which you would use each procedure to recover
passwords. These conditions are a combination of Fabric OS version and account access availability.
TABLE 1 Password recovery procedures and when to use them

Condition (Fabric OS version and account access availability) Use these procedures
Password recovery using root account on page 10.
Access to root account on any supported version of Fabric OS
Password recovery using the Boot PROM interface on page 15.
Fabric OS 4.1x, 4.2x, 4.4x, 4.x, 5.x, 6.x, or 7.x
No root account access
Boot PROM interface access

Obtaining the boot PROM recovery password on page 17, and then
Fabric OS 4.1x, 4.2x, 4.4x, 4.x, 5.x, 6.x, or 7.x
Password recovery using the Boot PROM interface on page 15.
No Boot PROM interface access

Password recovery using Password Recovery firmware on page 11.
Fabric OS 2.6.x or 3.x
NOTE
To do a password recovery on a FIPS-enabled switch, you will have to disable FIPS, then recover the password, and then
restore FIPS.
Password recovery for Fabric OS 2.6.x and 3.x

When running Fabric OS 2.6.x or 3.x, having access to the root account permits you to reset the passwords for all other accounts on the
system, including the factory, admin, and user accounts. The admin account can reset only the user password. See Password recovery
using root account on page 10.
If you do not have access to the root account, you can use Password Recovery firmware, available from your switch support provider.
See Password recovery using Password Recovery firmware on page 11.

53-1000114-10 9
Password recovery for Fabric OS 4.x and later

When running Fabric OS 4.x or later, having access to the root account permits you to reset the passwords for all other accounts on the
system, including the factory, admin, and user accounts. Admin can reset only the user login. See Password recovery using root account
on page 10.
If you do not have access to the root account, you can use the boot PROM method. This option is available only on Fabric OS 4.1 or
later. See Password recovery using the Boot PROM interface on page 15. If the password is set on the boot PROM and is unknown,
contact your switch service provider for a Boot PROM recovery string to regain access to the switch. See Obtaining the boot PROM
recovery password on page 17.
Password recovery using root account

If you have access to the root account, you can reset the passwords on the switch to their factory defaults. This feature is available for all
currently supported versions of Fabric OS.
To reset any account password from the root account, complete the following steps.
1. Open a CLI session (by means of a serial connection or Telnet for an unsecured system and secTelnet for a secure system) to
the switch.
2. Log in as root.
3. At the prompt, enter passwddefault .
4. The passwords are reset to their factory default values.
The following example illustrates this procedure.
switch:login> root
password: ********
Disclaimer for Root and Factory Accounts Usage!
This Fibre Channel switch is equipped with Root and Factory accounts
that are intended for diagnostics and debugging purposes solely by
the Equipment vendor's trained engineers. Improper use of the
functionality made available through the Root or Factory account could
cause significant harm and disruption to the operation of the SAN fabric.
Your use of the functionality made available through the Root or Factory
account is at your sole risk and you assume all liability resulting from
such use. The Equipment vendor shall have no liability for any losses
or damages arising from or relating to the use of the Root or Factory
account (and the functionality enabled thereby) by anyone other than
the Equipment vendor's authorized engineers.
Proceeding with the usage of this switch as the Root or Factory user
explicitly indicates your agreement to the terms of this disclaimer.
switch:root> passwddefault
Password policies are already set to default.
All account passwords have been successfully set to factory default.
5. Once the passwords have been reset, log into the switch as admin and change the default account passwords.
Make sure to keep a written copy of your switch passwords in a secure location. Table 2 lists the default passwords for Fabric
OS switches, and provides a place for you to log your new ones.
TABLE 2 Default passwords

Account Default password New Password
factory shuntang (older switches)
password (newer switches)

root fibranne

10 53-1000114-10
TABLE 2 Default passwords (continued)

Account Default password New Password
admin password
user password
Password recovery using Password Recovery firmware

This procedure applies only to Brocade switches and Directors running Fabric OS 2.6.x and 3.x.
This procedure requires Password Recovery firmware, available from your switch support provider. The Password Recovery firmware is
effective only for the first time it is launched. You cannot use the Password Recovery firmware to perform any other switch functions.
These procedures require switch downtime. Brocade recommends removing the switch from the fabric and rejoining it after the recovery
process is complete.
In order to complete the steps in this section you need the following:
Password Recovery firmware: Provide the exact Fabric OS version and the WWN of the switch to your support provider with a
request for the Password Recovery firmware. This firmware can be launched only once, and it recovers the password for the
specific switch only.
Ethernet connection between host and switch. This can be a network connection from a host to the switch or a direct
connection with an Ethernet crossover cable.
Serial connection to the switch.
NOTE
The Brocade SilkWorm 2800 does not have a serial port on the switch. Password recovery on a Brocade SilkWorm 2800 is
not supported.
Password recovery for Fabric OS v2.6.x and v3.x

To reset the passwords on a Fabric OS v2.6.x and v3.x switch by using the Password Recovery firmware, follow these steps:
1. Copy the Password Recovery firmware to a host that is accessible to the switch; either an FTP server or a laptop running an
FTP server that is directly connected to the Ethernet port.
ATTENTION
You must use either FTP or RSHD to copy the firmware. If FTP is used, the password cannot be blank.
2. Connect to the switch serial (console) port.
3. Power-cycle the switch.
4. Set the boot parameters on the switch to perform a netboot:
a) At the [VxWorks Boot] prompt for the switch, enter c.
b) Enter the requested information at the prompts. To accept the default value for a parameter, press Enter. The parameters
are defined as follows:
TABLE 3 VxWorks Boot parameters

Parameter Description
host name Name of machine on which Password Recovery firmware is located

53-1000114-10 11
TABLE 3 VxWorks Boot parameters (continued)

Parameter Description
file name Full pathname where Password Recovery firmware is located
inet on ethernet Switch IP address
host inet The IP address for the FTP or RSHD host
gateway inet Gateway address
user Login name of user account on host machine
Press any key to stop auto-boot.
[VxWorks Boot]: c
'.' = clear field; '-' = go to previous field; ^D = quit
boot device : fei
processor number : 0
host name : host
file name : /usr/switch/firmware resetPasswd303f6f
inet on ethernet (e) : 192.168.132.217:255.255.240.0
inet on backplane (b):
host inet (h) : 192.168.132.133
gateway inet (g) : 192.168.132.133
user (u) : user
ftp password (pw) (blank = use rsh):
flags (f) : 0x0
target name (tn) : sw2800
startup script (s) :
other (o) :
5. Enter @ at the [VxWorks Boot] prompt to begin booting the Password Recovery version of the firmware from the network.
[VxWorks Boot]: @
boot device : fei
processor number : 0
host name : host
file name : resetPasswd303f6f
inet on ethernet (e) : 192.168.132.217:fffff000
host inet (h) : 192.168.132.133
gateway inet (g) : 192.168.132.133
user (u) : user
flags (f) : 0x0
target name (tn) : sw2800
Attaching network interface fei0... done.
Attaching network interface lo0... done.
host is alive <--- Connection to Host Providing Firmware Image
Loading... 4407608 + 329564 + 1153796
Starting at 0x10400000...
Attaching network interface fei0... done.
Attached TCP/IP interface to fei unit 0
Attaching network interface lo0... done.
telnetInit: telnetd initialized.
NFS client support not included.
efwHookAdd: Added Ethernet Hook
Adding 9407 symbols for standalone.
Model: 4
flash time 0, creation time 1048818644
Committing configuration...done.
setting passwd to defaults <--- Firmware Image Resets Password to Brocade Defaults
Time Bomb has been set
RESTRICTED ONE TIME USE
Passwords have been reset. Please power cycle the switch.
The user, admin, factory, and root passwords are reset to the default values.
7. Press any key when you see the message Press any key to stop autoboot.... This provides access to the boot prompt.

12 53-1000114-10
8. Set the switch to boot from the flash again.
a) At the [VxWorks Boot] prompt, enter c to begin resetting the boot parameters to the defaults.
b) Remove the values that you added by typing a period (.) after each parameter, then press Enter. The boot parameters are
returned to the default settings.
9. Power-cycle the switch to reload the original firmware from flash. The switch resumes normal operation.
10. Once the switch has completed rebooting, use a Telnet, serial, or SSH connection to log in as root to the active CP and set new
passwords for all accounts.

53-1000114-10 13

14 53-1000114-10
Password recovery using the Boot PROM

interface
Password recovery using the Boot PROM interface..................................................................................................................................... 15
Password recovery for Fabric OS 4.4.0................................................................................................................................................................ 18
Password recovery procedure: quick reference................................................................................................................................................ 19
Password recovery procedure for Brocade 200E, 4900, 5000, 7500, and 7600 switches........................................... 20
Password recovery procedure for Brocade 12000, 24000, and 48000 switches................................................................... 21
Password recovery procedure for Brocade 3250, 3850, 3900, and 4100 switches.............................................................24
Password recovery procedure for Brocade 300, 5100, 5300, VA-40FC, 6505, 6510, and 6520
switches and the Brocade Encryption Switch ................................................................................................................................................. 25
Password recovery procedure for Brocade DCX, DCX-4S, DCX 8510-8, and DCX 8510-4..............................................27
Password recovery procedure for Brocade 7800 switch......................................................................................................................... 29
Password recovery procedure for Brocade 7840 switch and Brocade Analytics Monitoring Platform..........................31
Password recovery using the Boot PROM interface

CAUTION
Enter commands at the boot PROM interface exactly as shown. Incorrectly entered commands at the boot PROM interface can
render your switch unstable or unusable. To recover, you would need to seek help from your switch service provider or return
your switch to the factory for repair.
You can use this procedure if you need to recover passwords on a device running Fabric OS v4.1.x, 4.2.x, 4.4.x, 5.x, 6.x, or 7.x and the
root account is not accessible. If the root account is accessible, use Password recovery using root account on page 10, instead.
To use this procedure, you must have access to the Boot PROM interface; that is, the Boot PROM password must be either available or
not set. If you do not have access to the Boot PROM interface, use Obtaining the boot PROM recovery password on page 17 before
using this procedure.
ATTENTION
If you are attempting to recover passwords for Fabric OS v4.4.0, review Password recovery for Fabric OS 4.4.0 on page 18
before beginning this procedure.
The specific steps required to recover passwords using the Boot PROM interface depend on several factors, including the following:
The Boot ROM environment: Two Boot ROM environments exist, the original 440 processor types and the newer Freescale
processor type, which uses U-Boot.
Location of the Linux kernel: On earlier products, the Linux kernel was maintained on separate hardware chips. For these
products, these procedures make references to MEM()0xF00000000. Later products place the kernel on the compact flash.
For these products, these procedures make references to ATA()0xb689f type structures.
Whether the platform has a single Command Processor (CP) or has active and standby CPs, as follows:
This procedure is disruptive to traffic on the 300, 3250, 3850, 3900, 4100, 200E, 4900, 5000, 5100, 5300,
VA-40FC, 6505, 6510, 6520, 6530, 7500, 7600 and Brocade 7840 Extension Switch switches as well as the Brocade
Encryption Switch and Brocade Analytics Monitoring Platform, because it requires you to reboot the switch; traffic will
resume after the switch is rebooted.
This procedure is not disruptive to traffic on the Brocade 12000, 24000, and 48000 directors, or the DCX, DCX-4S,
DCX 8510-4, and DCX 8510-8 chassis, as you can reset the passwords on the standby CP first, and then updating the

53-1000114-10 15
active CP. To reset the passwords on the active CP from the standby CP, extra steps are necessary to communicate with
the active CP. These are documented in the appropriate procedures.
Throughput of the switch or Director: 8 Gbps devices, including the Brocade 300, 5100, 5300, DCX, and DCX-4S devices,
require the creation of a temporary boot environment variable. This is documented in the appropriate procedures.
Table 4 lists the combinations. Each combination has a separate password recovery procedure.
TABLE 4 Factor combinations and associated Brocade devices

Factor combinations Associated Brocade Fabric OS devices
Brocade 7840 Extension Switch and Brocade Analytics Monitoring Platform
ATA()0xa64g
U-Boot ROM
Active and standby

CPs
16 Gbps platform
Brocade DCX, DCX-4S, DCX 8510-4, and DCX 8510-8
ATA()0xa64g
U-Boot ROM
Active and standby

CPs
8 Gbps platform
Brocade 300, 5100, 5300, 6505, 6510, 6520, 6530, Brocade Encryption Switch, VA-40FC
ATA()0xa64g
U-Boot ROM
Single CP
8 Gbps platform
Brocade 200E, 4900, 5000, 7500, 7600
ATA()0xa64g
Original Boot ROM
Single CP
Brocade 12000, 24000, 48000
MEM()0xF0000000
Original Boot ROM
Active and backup CPs

Brocade 3250, 3850, 3900, 4100
MEM()0xF0000000
Original Boot ROM
Single CP
The following links provide detailed procedures for performing password recovery on each group of related devices, as well as a quick
reference for advanced users who need only a reminder of the basic steps.
Password recovery procedure: quick reference on page 19.
Password recovery procedure for Brocade DCX, DCX-4S, DCX 8510-8, and DCX 8510-4 on page 27.
Password recovery procedure for Brocade 300, 5100, 5300, VA-40FC, 6505, 6510, and 6520 switches and the Brocade
Encryption Switch on page 25.
Password recovery procedure for Brocade 200E, 4900, 5000, 7500, and 7600 switches on page 20.

16 53-1000114-10
Password recovery procedure for Brocade 12000, 24000, and 48000 switches on page 21.
Password recovery procedure for Brocade 3250, 3850, 3900, and 4100 switches on page 24.
Password recovery procedure for Brocade 7840 switch and Brocade Analytics Monitoring Platform on page 31
GUID-5FA46F41-C176-4629-AC14-9A2DC6EFDE16
Obtaining the boot PROM recovery password

This procedure explains how to gather the information you need to get a Boot PROM recovery password when you do not have the
Boot PROM password, or when the Boot PROM password is not known. It applies to devices running Fabric OS version 4.1.x or later.
To obtain the Boot PROM recovery password from your switch support provider, complete the following steps:
1. Connect to the serial port of the switch or standby CP using a terminal emulator.
2. Reboot the switch or standby CP blade.
3. Press Esc within four seconds following the message "Press escape within 4 seconds...". The following prompt appears:
1) Start system.
2) Recover password.
3) Enter command shell.
Option?
4. Enter 2 at the prompt. A character string is displayed as shown in the following example:
Option? 2
Send the following string to Customer Support for password recovery:
00uasLR1raCqT3FToqy0ZjA== <-- String you must send to your support provider
5. Send the string to your switch support provider to obtain the Boot PROM recovery password for this device.
6. When you receive the Boot PROM recovery password for this device from your switch support provider, perform the following
steps to set the Boot PROM password.
7. Follow steps 1-3 above, but enter 3 at the prompt.
Recovery password is NOT set. Please set it now.
8. Enter the Recovery Password you received from your support provider when prompted, and then reenter it when prompted.
Enter the supplied recovery password.

Recovery Password: 00uasLR1raCqT3FToqy0ZjA== <-- Supplied by your support provider
Re-enter Recovery Password: 00uasLR1raCqT3FToqy0ZjA==
9. At the "New password:" prompt, enter the password you want to be the new Boot PROM password and reenter it when
prompted. This is not the same as the recovery password.
New password: xxx

Re-enter new password: xxx
10. Record the new Boot PROM password for future reference.
Boot PROM password ___________________________________________
The boot process continues to a normal FOS login prompt. However, the passwords for the root and admin accounts are now
unknown. To set the root and admin passwords, follow the appropriate set of instructions for your device as listed in Password
recovery using the Boot PROM interface on page 15. Once you have completed this procedure, your switch will be back in
operational mode.

53-1000114-10 17
Removing the boot PROM password

To remove the boot PROM password, complete the following steps.
1. Log into the switch as root.

2. Enter resetPw to clear the boot PROM password usage.
3. Enter saveEnv . Passwords will no longer be required for Boot PROM access.
Password recovery for Fabric OS 4.4.0

In Fabric OS 4.4.0, you must take additional steps before and after performing the Password recovery using the Boot PROM interface
on page 15. Otherwise, the switch is left in single-user mode.
Before logging in as root

ATTENTION
When running Fabric OS v4.4.0, you must save the output of the printenv command before booting the switch in single-user
mode. Saving this information is necessary because booting the system from the Boot PROM command shell in Fabric OS
4.4.0 erases all Boot PROM parameters. You will reenter these parameter values later, after the password recovery process is
complete.
A skeletal procedure is provided here. For procedural details, see Password recovery using the Boot PROM interface on page 15, and
find the procedure for your specific switch. Remember to save the output of the printenv command.
1. Connect to the serial port of the switch or the standby CP.

2. Reboot the switch and press Esc within 4 seconds following the message "Press escape within 4 seconds...".
3. Enter 3 at the prompt to enter the command shell.
4. Enter the Boot PROM password.
The system is coming up, please wait...

Checking system RAM - press any key to stop test
Checking memory address: 01300000
System RAM check terminated by keyboard
System RAM check complete
Press escape within 4 seconds to enter boot interface.
1) Start system.
Option?
Password:
5. Enter the printenv command and save the output. For example:
=> printenv
AutoLoad=yes
ENET_MAC=006069602BD6
InitTest=MEM()
LoadIdentifiers=Fabric Operating System;Fabric Operating System
OSLoader=MEM()0xF0000000;MEM()0xF0800000
OSLoadOptions=quiet;quiet
OSRootPartition=hda1;hda2
SkipWatchdog=yes
6. From the output of the printenv command, record the value for OSLoader.

18 53-1000114-10
OSLoader ___________________________________________
After recovering the passwords

After you have recovered the passwords, you must perform these steps:
1. Connect to the serial port interface of the switch or standby CP.

2. Reboot the switch and press Esc within 4 seconds following the message "Press escape within 4 seconds...".
3. Enter 3 at the prompt to enter the command shell.
"Enter Boot PROM interface:"
4. Enter the Boot PROM password.

5. Enter the following command strings, one at a time, to the Boot PROM parameters you saved before booting from the Boot
PROM command shell:
NOTE
The value of the OSLoader= string should be set to the exact value from Before logging in as root on page 18 on
Before logging in as root on page 18.
unsetenv OSBooted
setenv LoadIdentifiers=Fabric Operating System;Fabric Operating System
setenv OSLoadOptions=quiet;quiet
setenv OSLoader=MEM()0xF0000000;MEM()0xF0800000
saveenv
printenv
reset
Password recovery procedure: quick reference

Advanced users who need only a reminder of the basic steps can use this quick reference to recover passwords.
1. Connect to the switch serial port using a terminal emulator.

3. When prompted to stop test or stop AutoBoot, press Esc .
4. Select the "Enter command shell" option. (Usually option 3 .)
5. Enter printenv .
6. For non-8 Gbps platforms, enter boot followed by the first OSLoader parameter shown in the printenv output above, and then
-s
For 8 Gbps platforms:
a) Enter setenv OSLoadOptions "single"
b) Enter boot
7. Enter mount -o remount,rw,noatime /
8. Enter mount/dev/hda1 /mnt
For this step, choose the second parameter for OSRootPartition shown in the printenv output above.
9. Enter /etc/init.d/network start

53-1000114-10 19
This step is required only for devices with both active and standby CPs.
10. Enter /sbin/passwddefault
On some platforms, this step during password recovery attempt via bootprom may display error messages such as Raslog
Module Initialization failed rc=-1 fabsys device open: No such device or address. This message
may be ignored as long as the message All account passwords have been successfully set to factory
default. appears in response to this command.
11. Enter bootenv OSLoadOptions "quiet;quiet"
12. Enter reboot -f
Traffic flow will resume when the switch completes rebooting.
Password recovery procedure for Brocade 200E, 4900, 5000, 7500, and
7600 switches
To recover a password on a Brocade 200E, 4900, 5000, 7500, or 7600 switch, follow these steps:
1. Establish a connection to the Command Processor (CP) through the switch serial port using a terminal emulator.
3. When you see the message Press escape within 4 seconds..., press Esc. The Boot PROM menu is displayed with the
following options:
Start system: Reboots the system.
Recover password: Generates a character string for your support provider to recover the Boot PROM password. Use this
feature only when directed by technical support personnel.
Enter command shell: Opens a command shell so you can reset all system passwords.
The reboot will look similar to the following:

01a00000
1) Start system.
Option?
4. Enter 3 to open a command shell.

5. If the Boot PROM password has been set, you are prompted to enter it.
The Boot PROM has a password only if one was defined. If the Boot PROM password has not been set, you will not be
prompted to enter one.
ATTENTION
If you are prompted to enter a new Boot PROM password, make sure it is at least 8 characters in length. Do not select
this option unless specifically instructed by support personnel.
6. Enter printenv and note the following values from its output. You will need these values later in this procedure.
From the OSLoader field, the first of the two ATA memory addresses shown.

20 53-1000114-10
From the OSRootPartition field, the second partition value shown.
The following example highlights the two fields whose values you need to note.
=> printenv
AutoLoad=yes
ENET_MAC=00051E905AF0
InitTest=MEM()
LoadIdentifiers=Fabric Operating System;Fabric Operating System.
OSLoadOptions=quiet
OSLoader=ATA()0xb009f;ATA()0x141480 <--- ATA addresses
OSRootPartition=hda1;hda2 <--- partitions
SkipWatchdog=yes
7. Enter boot followed by the first ATA memory address you obtained in the previous step, and then -s.
=> boot ATA()0xb009f -s

Booting "Manually selected OS" image.
Entry point at 0x00800000 ...
8. Enter mount -o remount,rw,noatime / to remount the root partition as capable of read/write operations.
9. Enter mount followed by /dev and then the second partition value (such as hda1 or hda2) from the OSRootpartition field in the
output of the printenv command obtained in Step 6.
> mount /dev/hda2 /mnt
NOTE
OSRootPartition either points to the first partition (hda1) or the second partition (hda2). The first entry is assigned as
the root or bootable partition. Normally, either partition is bootable unless there was a firmware download in progress
that went wrong or there is corruption in the partition. To change the root partition, simply swap the order by entering
either OSRootPartition=hda1;hda2 or OSRootPartition=hda2;hda1.
10. Enter /sbin/passwddefault to reset all passwords to their default values.
ATTENTION
If additional user accounts exist, they will be deleted. Only the default accounts and passwords will remain.
11. Enter reboot -f to reboot the switch.

This completes the password recovery procedure for these switches.
Password recovery procedure for Brocade 12000, 24000, and 48000

switches
This procedure requires you to connect to the serial port of the switch standby Command Processor (CP) blade. To determine which CP
blade is the standby, use the active LED to identify the active CP blade. The standby CP blade will be the other CP blade.
To recover a password on a Brocade 12000, 24000, or 48000 Director, follow these steps:
1. Establish a connection to the serial port of the switch standby CP blade using a terminal emulation program.
2. Power-cycle the standby CP blade using the physical slider switch on that CP blade.

53-1000114-10 21
following options:

01a00000
1) Start system.
Option?

5. If the Boot PROM password has been set, you are prompted to enter it. The Boot PROM has a password only if one was
defined. If the Boot PROM password has not been set, you will not be prompted to enter one.
ATTENTION
6. Enter printenv and note the following values from its output. You will need these values later in this procedure:
From the OSLoader field, the first of the two ATA memory addresses shown.
> printenv
AutoLoad=yes
ENET_MAC=0060696019B4
InitTest=MEM()
OSBooted=MEM()0xF0000000
OSLoader=MEM()0xF0000000;MEM()0xF0800000 <--- ATA addresses
SkipWatchdog=yes
7. Enter boot followed by the first ATA memory address you obtained in the previous step and then -s.
> boot MEM()0xF0000000 -s

8. Enter mount-o remount,rw,noatime / to remount the root partition as read/write.

output of the printenv command as obtained in Step 6.

22 53-1000114-10
NOTE
that went wrong or there is corruption in the partition. To change the root partition, simply swap the order, for example
OSRootPartition=hda1;hda2 or OSRootPartition=hda2;hda1.
10. The following commands must be done using the serial connection to the standby CP blade.
a) Enter /bin/cat /etc/hosts to view the /etc/hosts file and determine the CP hostnames.
# /bin/cat /etc/hosts
127.0.0.1 localhost
10.64.148.23 swd77 #sw0 255.255.240.0
10.64.148.24 swd76 #sw1 255.255.240.0
10.64.128.25 mycp0 #cp0 255.255.240.0 <-- CP0 SLOT 5
10.64.148.26 cp1 #cp1 255.255.240.0 <-- CP1 SLOT 6
0.0.0.0 #fc0 0.0.0.0
0.0.0.0 #fc1 0.0.0.0
10.0.0.5 cp_0_inteth #cp_0_internaleth
NOTE
The hostnames for CP0 and CP1 are user definable, and are different for each installation.
b) Use the hostname displayed in the previous step to set the appropriate hostname for the standby CP. In this example the
standby CP is mycp0.
# hostname mycp0
c) Enter /etc/init.d/network start to start networking on the standby CP and enable communication with the active CP.
d) On the standby CP, enter rsh followed by the IP address of the active CP and then /sbin/passwddefault to reset the active
CP passwords.
On some platforms, this step during password recovery attempt via bootprom may display error messages such as
Raslog Module Initialization failed rc=-1 fabsys device open: No such device or address.
These message may be ignored as long as the message All account passwords have been successfully set
to factory default. appears in response to this command.
If the standby CP card is in slot 5 (CP0), enter the following command:
sh-2.04# rsh 10.0.0.6 /sbin/passwddefault


53-1000114-10 23
Password recovery procedure for Brocade 3250, 3850, 3900, and 4100
switches
To recover a password on a Brocade 3250, 3850, 3900, or 4100 switch, follow these steps:
1. Establish a connection to the Command Processor (CP) through the switch serial port using a terminal emulation program.
following options:

01a00000
1) Start system.
Option?

ATTENTION
6. Enter printenv and note the following values from its output. You will need these values later in this procedure.
From the OSLoader field, the first of the two MEM memory addresses shown.
> printenv
AutoLoad=yes
ENET_MAC=0060696019B4
InitTest=MEM()
OSBooted=MEM()0xF0000000
OSLoader=MEM()0xF0000000;MEM()0xF0800000 <--- ATA addresses
SkipWatchdog=yes

24 53-1000114-10
7. Enter boot followed by the first ATA memory address you obtained in the previous step and then -s.
> boot MEM()0xF0000000 -s

8. Enter mount -o remount,rw,noatime / to remount the root partition as read/write.

output of printenv obtained in Step 6.
NOTE
that went wrong or there is corruption in the partition. To change the root partition, simply swap the order, for example
OSRootPartition=hda1;hda2 or OSRootPartition=hda1;hda2.
10. Enter passwddefault to reset all passwords to default values.
ATTENTION
If additional user accounts existed, they are deleted. Only the default accounts and passwords remain.

Password recovery procedure for Brocade 300, 5100, 5300, VA-40FC,

6505, 6510, and 6520 switches and the Brocade Encryption Switch
To recover a password on a Brocade 300, 5100, 5300, 6505, 6510, 6520, Brocade Encryption Switch, or VA-40FC, follow these
steps:
1. Establish a connection to the Command Processor (CP) through the switch serial port using a terminal emulator.
3. When prompted to stop test or stop AutoBoot, press Esc. The Boot PROM menu is displayed with the following options:

System RAM test terminated by keyboard
set_bootstatus: BS_LOAD_OS, platform_idx = 6
Hit ESC to stop autoboot: 0
1) Start system.

53-1000114-10 25

Option?

ATTENTION
6. Enter setenv OSLoadOptions "single" to change the OSLoadOptions setting so that the switch will boot into single-user mode.
=> setenv OSLoadOptions "single"
7. Enter printenv to verify the change.
The following example highlights the field whose value you need to note.
=> printenv
AutoLoad=yes
BootromVerbose=no
InitTest=MEM()
OSLoadOptions=single <--- indicates the switch will boot into single-user mode
(output truncated)
8. Enter saveenv to save the changes.
=> saveenv
Saving Environment to Flash.....Done
9. Enter boot with no parameters to bring up the device in single-user mode.
=> boot
Map file at LBA sector 0x17da68
## Booting image at 00400000 ...
(output truncated)
10. Enter mount -o remount,rw / to remount the root partition as capable of read/write operations.
sh-2.04# mount -o remount,rw /

EXT3 FS on hda1, internal journal
11. Use the mount command to mount the secondary partition.
If the mount command in the previous step returns hda2, then use hda1 in this command. If the previous command returns
hda1, use hda2.
sh-2.04# mount /dev/hda2 /mnt

kjournald starting. Commit interval 5 seconds
EXT3-fs: mounted filesystem with ordered data mode.
12. Enter /sbin/passwddefault to reset all passwords to default values.
sh-2.04# /sbin/passwddefault
All account passwords have been successfully set to factory default.
ATTENTION
If additional user accounts existed, they are deleted. Only the default accounts and passwords remain.

26 53-1000114-10
Module Initialization failed rc=-1 fabsys device open: No such device or address. These message
13. Enter bootenv OSLoadOptions "quiet;quiet" to reset the OSLoadOptions to quiet;quiet.
Traffic flow resumes when the switch completes rebooting.

Password recovery procedure for Brocade DCX, DCX-4S, DCX 8510-8, and
DCX 8510-4
This procedure requires you to connect to the serial port of the switch standby Command Processor (CP) blade. To determine which CP
blade is the standby, use the active LED to identify the active CP blade. The standby CP blade will be the other CP blade.
1. Establish a connection to the serial port of the standby CP blade using a terminal emulator.
2. Power-cycle the standby CP blade using the physical slider switch on that CP blade.
3. When prompted to stop test or stop AutoBoot, press Esc. The Boot PROM menu is displayed with the following options:

1) Start system.
Option?

ATTENTION
6. Enter setenv OSLoadOptions "single" to change the OSLoadOptions setting so that the switch boots into single-user mode.

53-1000114-10 27
=> printenv
AutoLoad=yes
BootromVerbose=no
InitTest=MEM()
OSLoadOptions=single <--- indicates the switch will boot into single-user mode
(output truncated)
8. Enter saveenv to save the changes:
=> saveenv
=> boot
ATA device vendor STI Flash 8.0.0, product
STI1M73108114125534, revision 01/17/07
Map file at LBA sector 0x5003f
(output truncated)
10. Enter mount -o remount,rw/ to remount the root partition as capable of read/write operations.

11. Enter mount /dev/hda2 /mnt command to mount the secondary partition.
hda1, use hda2.

kjournald starting.
Commit interval 5 seconds
EXT3-fs: recovery complete.
12. The following commands must be done using the serial connection to the standby CP blade.
a) Enter /bin/cat /etc/hosts to view the /etc/hosts file and determine the CP hostnames.
sh-2.04# /bin/cat /etc/hosts

127.0.0.1 localhost
10.64.148.23 swd77 #sw0 255.255.240.0
10.64.148.24 swd76 #sw1 255.255.240.0
10.64.128.25 mycp0 #cp0 255.255.240.0 <--- CP0 SLOT 5
10.64.148.26 cp1 #cp1 255.255.240.0 <--- CP1 SLOT 6
0.0.0.0 #fc0 0.0.0.0
0.0.0.0 #fc1 0.0.0.0
NOTE
The hostnames for CP0 and CP1 are user-definable, and are different for each installation.
b) Use the hostname displayed in the previous step to set the appropriate hostname for the standby CP. In this example the
standby CP is mycp0.
sh-2.04# hostname mycp0
c) Enter /etc/init.d/network start to start networking on the standby CP and enable communication with the active CP.

28 53-1000114-10
d) On the standby CP, enter rsh followed by the IP address of the active CP and then /sbin/passwddefault to reset the active
CP passwords.
For DCX or DCS 8510-8 devices:
On some platforms, this step during password recovery attempt via bootprom may display error messages such as
Raslog Module Initialization failed rc=-1 fabsys device open: No such device or address.
These message may be ignored as long as the message All account passwords have been successfully set
to factory default. appears in response to this command.
For DCX-4S or FCX 8510-4 devices :
e) Enter bootenv OSLoadOptions "quiet;quiet" to reset the OSLoadOptions to quiet;quiet.
f) Enter reboot -f to reboot the switch.

Password recovery procedure for Brocade 7800 switch

To recover a password on a Brocade 7800 switch, follow these steps:
3. When you see the message Hit ESC to stop autoboot, press Esc. The Boot PROM menu is displayed with the following
options:


53-1000114-10 29

1) Start system.
Option?

ATTENTION
6. Enter setenv OSLoadOptions "single" to change the OSLoadOptions setting so that the switch boots into single-user mode.
=> saveenv

10. Enter mount -o remount,rw,/ to remount the root partition as capable of read/write operations.

11. Use the mount /dev/hda2 /mnt command to mount the secondary partition.
hda1, use hda2.

kjournald starting. Commit interval 5 seconds
13. Enter bootenv OSLoadOptions "quiet;quiet" to reset the OSLoadOptions setting to "quiet".
This completes the password recovery procedure for this switch.

30 53-1000114-10
Password recovery procedure for Brocade 7840 switch and Brocade

Analytics Monitoring Platform
To recover a password on a Brocade 7840 switch or Brocade Analytics Monitoring Platform, follow these steps:
following options:

1) Start system.
Option?

ATTENTION
6. Enter setenv bootargs 'root=/dev/sda$prt rootfstype=ext4 quiet single'.
This sets the switch so that the switch boots into single-user mode.
=> printenv
AutoLoad=yes
InitTest=MEM()
OSLoadOptions=quiet
OSRootPartition=sda1;sda2
SkipWatchdog=yes
bootargs=root=/dev/sda1 rootfstype=ext4 quiet single
bootcmd=run linux_bootcmd
bootdelay=5
devinit=usb reset 0
devname=sda
eth1addr=00:05:33:65:A1:C3
eth2addr=ac:de:48:00:00:02
ethact=FM1@DTSEC2
ethaddr=00:05:33:65:A1:C3

53-1000114-10 31
ethrotate=no
fastboot=true
gatewayip=10.38.32.1
gosaddr=0x78000000
goscmd=ext2load usb 0:$prt $gosaddr boot/zImage.tree.initrd
ipaddr=10.38.37.160
linux_bootcmd=makesinrec 0x01000000;ext2load usb 0:$prt 0x4000000 boot/silkworm.dtb;ext2load usb
0:$prt 0x2000000 boot/zImage.tree.initrd;bootm 0x2000000 - 0x4000000
netmask=255.255.240.0
prt=1
recovery_bootcmd=tftp 0x5000000 HiBootWdCntRecover_mm.scr;source 0x5000000
serverip=10.38.2.40
submask=255.255.240.0
syslock_debug=0
=> saveenv
=> boot
ATA device vendor STI Flash 8.0.0, product
STI1M73108114125555, revision 01/17/14
Map file at LBA sector 0x50088
(output truncated)
10. Enter mount -vo remount,rw,noatime/ to remount the root partition as capable of read/write operations.
sh-2.04# mount -vo remount,rw,noatime /

/dev/root on / type ext4 (rw,noatime)
11. Use the mount /dev/sda2 /mnt command to mount the secondary partition.
If the printenv command in step 7 returns prt value as 1, then use sda2 in this command. If the prt value is 2 from step 7, use
sda1.
sh-2.04# mount /dev/sda2 /mnt

sh-2.04#
sh-2.04# mount
/dev/root on / type unknown (rw,noatime)
none on /proc type proc (rw)
none on /sys type sysfs (rw)
none on /dev/pts type devpts (rw,mode=620)
none on /tmp type ramfs (rw)
/dev/sda1 on /mnt type ext4 (rw,noatime)
/dev/sda2 on /mnt type ext3 (rw)
13. Enter setenv bootargs 'root=/dev/sda$prt rootfstype=ext4 quiet' to reset the OSLoadOptions to quiet.

14. Once the switch has completed rebooting, use a Telnet, serial, or SSH connection to log in as admin to the active CP and set
new passwords for all accounts.

32 53-1000114-10
This completes the password recovery procedure for this switch.

53-1000114-10 33

Fos 740 Pwrecoverynotes

Încărcat de

Informații document

Drepturi de autor

Formate disponibile

Partajați acest document

Partajați sau inserați document

Opțiuni de partajare

Vi se pare util acest document?

Este necorespunzător acest conținut?

Drepturi de autor:

Formate disponibile

Fos 740 Pwrecoverynotes

Încărcat de

Drepturi de autor:

Formate disponibile

FOR BROCADE INTERNAL USE ONLY

Brocade Fabric OS Password Recovery

Supporting Fabric OS 7.x 6.x 5.x 4.x 3.x 2.6.x

2016, Brocade Communications Systems, Inc. All Rights Reserved.

Brocade Fabric OS Password Recovery Notes

Fabric OS password recovery notes............................................................................................................................................................................................................................9

Password recovery using the Boot PROM interface........................................................................................................................................................................................15

Brocade Fabric OS Password Recovery Notes

Brocade Fabric OS Password Recovery Notes

Text formatting conventions

Identifies keywords and operands

Identifies the names of user-manipulated GUI elements

Identifies text to enter at the GUI

Identifies variables and modifiers

Identifies paths and Internet addresses

Identifies document titles

Identifies command syntax examples

Command syntax conventions

Default responses to system prompts are enclosed in square brackets.

Brocade Fabric OS Password Recovery Notes

Notes, cautions, and warnings

Release notes are available on MyBrocade under Product Downloads.

Contacting Brocade Technical Support

Brocade Fabric OS Password Recovery Notes

Online Telephone E-mail

Toll-free numbers are available in

Brocade OEM customers

By sending your feedback to documentation@brocade.com.

Brocade Fabric OS Password Recovery Notes

Brocade Fabric OS Password Recovery Notes

Fabric OS password recovery notes

Password recovery overview

TABLE 1 Password recovery procedures and when to use them

No root account access

Boot PROM interface access

No Boot PROM interface access

No root account access

Password recovery for Fabric OS 2.6.x and 3.x

Brocade Fabric OS Password Recovery Notes

Password recovery for Fabric OS 4.x and later

Password recovery using root account

The following example illustrates this procedure.

TABLE 2 Default passwords

password (newer switches)

Brocade Fabric OS Password Recovery Notes

TABLE 2 Default passwords (continued)

Password recovery using Password Recovery firmware

Serial connection to the switch.

Password recovery for Fabric OS v2.6.x and v3.x

a) At the [VxWorks Boot] prompt for the switch, enter c.

TABLE 3 VxWorks Boot parameters

Brocade Fabric OS Password Recovery Notes

TABLE 3 VxWorks Boot parameters (continued)

Press any key to stop auto-boot.

Brocade Fabric OS Password Recovery Notes

8. Set the switch to boot from the flash again.

Brocade Fabric OS Password Recovery Notes

Brocade Fabric OS Password Recovery Notes

Password recovery using the Boot PROM

Password recovery using the Boot PROM interface

Brocade Fabric OS Password Recovery Notes

TABLE 4 Factor combinations and associated Brocade devices

Active and standby

Active and standby