Guest User!

You are not Sophos Staff.

Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 4 replies
  • Answers 1 answer
  • Subscribers 27 subscribers
  • Views 4818 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

XG FW - Default Admin Password Forgotten - Reset

Matt Saggers

Hi Team,

I am having trouble with my Admin password as what was stored in a password vault is no longer working.   I have previously added an additional user account with Administration privileges, so have access to the Web Console via this account.

Looking through the community posts I found these two KBs.

https://docs.sophos.com/nsg/sophos-firewall/18.0/Help/en-us/webhelp/onlinehelp/nsg/sfos/tasks/AdministrationAdminPasswordResetUsingConsole.html

https://support.sophos.com/support/s/article/KB-000035990?language=en_US&c__displayLanguage=en_US

However, my additional user account is getting a Permission Denied when I try to use SSH to reach the CLI, and I dont have the equipment to connect via Consol with PuTTY or SP Loader.

Any ideas why SSH would not work?

As an alternative, if I connect a monitor via HDMI and a keyboard can I still use the RESET process at Admin password prompt?



This thread was automatically locked due to age.
  • 0

    Hello,

    Matt Saggers said:
    However, my additional user account is getting a Permission Denied when I try to use SSH to reach the CLI

    Only the default "Admin" account has access to SSH.

    Matt Saggers said:
    As an alternative, if I connect a monitor via HDMI and a keyboard can I still use the RESET process at Admin password prompt?

    First, what Appliance do you currently have? Depending on the appliance you will need to restart your XG appliance - and with the SFLoader you should be able to reset the admin password. (Through a Monitor/Keyboard.)

    Thanks!

  • 0 in reply to Prism

    XG115 Prism.  When I connected a monitor it stopped on the request for Admin password, so this is where I was stuck.  I believe on v17 you could type RESET in the password prompt.

  • 0 in reply to Matt Saggers

    First restart the appliance, 

    If your Appliance is currently Rev. 2, you should hold the "Enter" Key while the appliance is booting. But if the Appliance is Rev. 3 you should constantly tap the "Enter" Key, after It the Firewall Firmware Loader screen will appear, in there you will be able to select three different options.

    Two of them will be the Firewall Firmware itself, and in the the top there will be a "SFLoader" (0) option. Within that option you will be able to reset the admin password.

    You can follow this KB, the "Via SFLoader" part will show you how to reset It.

  • +1 in reply to Prism

    Thanks Prism.  I connected the monitor and USB keyboard and hit Enter during the boot, which I realised meant that on the Grub window I selected the current firmware and booted into that back to the password prompt.  I tried entering RESET and it got me through to a screen to perform a number of device reset commands, problem solved.

    Here is how it looked...

    Select option 4, change password then reboot.

    Next time you log into the Web Console you get prompted with the below.