SRX password reset/recovery

Here are some basic steps to reset the password on an SRX firewall.

Note: If you are looking for a default password, there is no default password in SRX.
A new SRX out of the box has the root user with no password.

1) Reboot the box and press SPACE when you see the following screen to get to the loader prompt.

2) Type “boot -s” in this prompt

3) After a while you will see a screen like below. Type “recovery” to continue

NOTE: If you don’t see this prompt for recovery but instead “Enter root password”, then password recovery must have been disabled via the configuration “set system ports console insecure” which means you can’t recover the password via this method.

4) In the end you will see that you will drop to the shell without any password. Once you type configure and followed by the “set system root-authentication plain-text-password”, you will have the new password assigned. Don’t forget to commit

5 thoughts on “SRX password reset/recovery

  1. ronald

    After entering the command boot -s
    i get a promt for the root password and not Enter full pathname of shell or ‘recovery’ for root password

    Please help me

    Reply
  2. rtoodtoo Post author

    Hi Ronald,
    If you are typing this “boot -s” on loader> prompt you shouldn’t be asked for root password to the best of my knowledge as I have never seen this behavior but I have found the http://kb.juniper.net/InfoCenter/index?page=content&id=KB17565 for you according to which in some branch SRX and junos releases you may have to run “watchdog disable” command just before “boot -s” I don’t know if this can solve your issue or not.

    Regards,

    Reply
    1. Abdulla

      I would like to know password recovery method for juniper firewall without erasing current configuration. I dont have backup.

      Reply

You have a feedback?