Archive of Ciscoskills
Factory Reset Firepower 2100

Factory Reset Firepower 2100

December 1, 2017·Ryan
Ryan

In this short guide I wanted to walk through the steps to do a factory reset for the Cisco Firepower 2100 series. When doing these resets all configuration and the administrative password are removed, as well as the FTD (Firepower Threat Defense) app-instance. When the unit starts to boot it will reinstall the FTD app-instance to default configuration.

There are two ways to factory reset these Firepower 2100 units. If you can get into the device you can simply use these commands: connect local-mgmt erase configuration The other method is used for if you are unable to get into the unit because either you don’t know the password or something else has happened to make this appliance unstable enough that a factory reset is needed.

Note: You have to be able to view the console port and power off the device in order to do the following:

  • Connect to the console of the device
  • Power off the system and turn it back on
  • When the system is booting you have to go into ROMMON mode, to do that press ESC or CTRL+L to interrupt the boot process.
*********************************************************************
Cisco System ROMMON, Version 1.0.00, RELEASE SOFTWARE
Copyright (c) 1994-2017  by Cisco Systems, Inc.
Compiled Tue 01/03/2017 23:55:11.41 by builder
*********************************************************************
 
Current image running: Boot ROM0
Last reset cause: PowerCycleRequest
DIMM_1/1 : Present
DIMM_2/1 : Absent
 
Platform FPR-2110 with 16384 MBytes of main memory
BIOS has been successfully locked !!
MAC Address: 00:27:e3:f6:e6:c8
 
Use BREAK or ESC to interrupt boot.
Use SPACE to begin boot immediately.
Boot interrupted.

You will now be at the ROMMOM prompt

rommon 1 >

To preform a recovery type the following

rommon 1 > password_reset
WARNING: User configurations will be lost with this operation
Are you sure ? yes/no [no]: yes
 
Enabling password reset..
Please continue to boot the image

The system will now boot into FXOS and attempt to reinstall the FTD application, the username and passwords are now at default settings and the FTD app-instance would also reinstall. Depending on the version of FTD that is installed by default you may have to reinstall any patches to get your unit up to update.

VLAN Access Lists (VACLs)Private VLANs