Junos Space Password Recovery
Table of Contents
Annoyingly I have created this post as the Junos Space instance, we have at work (after a reboot) as made an executive decision not to like the “Super user” password anymore, in turn locking me out of the Web GUI……… Joyasm :s
However, I will make this into a positive and ill show; how you can reset your super, admin and maintenance user passwords. As long as you don’t forget your admin password you will be able to make all changes via the CLI.
The Junos Space node, we have is clustered and Virtual Machine on an ESX host. For the physical Junos Space JA1500 or JA2500 from what I’ve read it should work the same.
Change admin password⌗
You can change the admin password via the CLI option 1
Welcome to the Junos Space network settings utility.
Initializing, please wait
Junos Space Settings Menu
1> Change Password
2> Change Network Settings
3> Change Time Options
4> Retrieve Logs
5> Security
6> Expand VM Drive Size
7> (Debug) run shell
A> Apply changes
Q> Quit
R> Redraw Menu
Choice \[1-7,AQR\]:
Change Super user password⌗
You are able to reset the super password back to factory default juniper123
by changing the mysql database. You will need to access the “run shell” (option 7) and run the command below:
mysql -u jboss -pnetscreen build_db
Once you have run this command you get this output:
[root@space-005056b07af1 ~\]# mysql -u jboss -pnetscreen build\_db
Warning: Using a password on the command line interface can be insecure.
Reading table information for completion of table and column names
You can turn off this feature to get a quicker startup with -A
Welcome to the MySQL monitor. Commands end with ; or \\g.
Your MySQL connection id is 225
Server version: 5.6.20-enterprise-commercial-advanced-log MySQL Enterprise Server - Advanced Edition (Commercial)
Copyright (c) 2000, 2014, Oracle and/or its affiliates. All rights reserved.
Oracle is a registered trademark of Oracle Corporation and/or its
affiliates. Other names may be trademarks of their respective
owners.
Type 'help;' or '\\h' for help. Type '\\c' to clear the current input statement.
mysql>
Now that we are into mysql, we can reset the “super” password back to the default of juniper123
mysql> update USER set password="ok89Nva6qHxytSHsP8AeLg==" where name="super";
Query OK, 1 row affected (0.00 sec)
Rows matched: 1 Changed: 1 Warnings: 0
Having updated the password, we can exit mysql and you should be able to log onto
To update the maintenance mode password⌗
You will need to update the htpasswd file, with the new password for the “maintenance” user
htpasswd -sb /var/www/maintenance/maintPW maintenance password
Once this has been run, you will see this output:
\=[root@space-005056b0fdf8 ~\]# htpasswd -sb /var/www/maintenance/maintPW maintenance password123
Updating password for user maintenance
Hopefully you should be good to go with logging back into your node. If not you will probably have to raise a JTAC case!