Hi,
I changed the Smart-1 LOM password from default and although I'm sure I entered the password correctly, I am not able to log back in.
How do you reset the LOM password?
Thanks in advance!
CPUG: The Check Point User Group | |
Resources for the Check Point Community, by the Check Point Community.
| |
First, I hope you're all well and staying safe. | |
|
Hi,
I changed the Smart-1 LOM password from default and although I'm sure I entered the password correctly, I am not able to log back in.
How do you reset the LOM password?
Thanks in advance!
Hi,
I’m fighting too with a LOM NIC on a Smart-1 too.
I think that the port is a little bit special. I changed the default ip address, and once rebooted the nic does not answer over the new ip address (and over the old one too).
I restored by “Factory defaults” ,and the funny thing here is that the LOM (when the Smart-1 start-up with the factory defaults) reply to icmp queries to the previous one configured by myself (so looks like that the “Restore factory defaults” does not affect to the LOM configuration.
By the way, I’m not able to connect to the LOM anymore.
So answering to your question, try to use the default one (may be the new one that you entered, was not really saved in the box)
Best,
Angel.
Reset LOM Card to factory defaults
Symptoms
Not able to access LOM Card
Forgot username to LOM Card
Forgot IP Address for LOM Card
LOM Card is not responding
Solution
Connect serial console cable to the console port on the front of the appliance
In your Console Application, such as Minicom, Putty, Hyperterminal or SecureCRT, set the speed to 38400 8N1 with hardware flow control disabled
power the machine off completely
On the Smart-1 50 you have to physically remove the power cables to get the LOM card to restart.
On the Smart-1 25 you can use the power switch on the back of the device to power off the LOM card.
On the Smart-1 50 as soon as you plug one power cable in the LOM card starts to boot, this is when you will need to stop the boot. You do not need to power on the Smart-1 50 appliance to reset the LOM card.
Power it on the appliance with the serial console connected
In your console appliance, almost immediately, you have to press <ESC> to stop the normal boot sequence, and enter the LOM firmware console.
at the prompt, type: bootfmh
at the login prompt, enter
username: reset
password: reset
I have noticed that occasionally there will be console output shown after the username: prompt. Just type in the username where the cusor stops
hit y to enter maintenance mode
at the next prompt, run ./reset.sh
this will reset the IP Address of the appliance back to 192.168.0.100 and reset the credentials back to defaults
This is the kind of knowledge that I typically can't find in Check Point's SK articles.
Thank you.
- boldin
CISSP
CCSE/R65
FWIW, I've just been through the "change LOM password, can't log back in" problem. The reset procedures are a little hairy but work OK. At the moment I've just created a new account with my desired password and left the original one as-is.
The new password I tried to use had an "!" in it, maybe that contributed to the problem? I'd raise this with CP support, but I'm seriously out of time to play with this any further.
m.
I will just add something to this thread in case someone else is having the same problem.
We set the IP filters in LOM configuration and weren't able to access it after running the reset script. To get rid of the IP filters, delete the /conf/IpFilter file in maintenance mode (how to get there is described in previous posts).
Also adding to this. Where it says Smart-1 25's can simply use the power switch. This did not work in our case and we had to follow the same procedure as the Smart-1 50. Physically remove the power cord and hit the ESC button as soon as you plug one power cord in. This was for a new Smart-1 25b though..
Bookmarks