- Preface
- Overview
- Troubleshooting Matrix
- Troubleshooting an Installation or Update
- Troubleshooting the Configuration
- Troubleshooting Cisco APIC-EM Multi-Host
- Troubleshooting Services Using System Health
- Troubleshooting Services Using the Controller Admin Console
- Troubleshooting Using the Logs
- Troubleshooting Passwords
- Troubleshooting Commands
- Troubleshooting Log Files
- Contacting the Cisco Technical Assistance Center
- Index
Troubleshooting
Passwords
The following procedures may be used to troubleshoot password problems:
- Performing Password Recovery with an Existing Administrator
- Performing Password Recovery with No Existing Administrator
- Performing Password Recovery for the Linux Grapevine User Account
Performing Password Recovery with an Existing Administrator
To perform password recovery for a user (administrator, installer or observer) where there exists at least one controller administrator (ROLE_ADMIN) user account, take the following steps:
-
Contact the existing administrator to set up a temporary password for the user that requires password recovery.
Note
The administrator can set up a temporary password by deleting the user's account and then recreating it with the lost password. The user can then log back into the controller to regain access and change the password once again to whatever he or she desires.
-
The user then needs to log into the controller with the temporary password and change the password.
Note
Passwords are changed in the controller GUI using the Change Password window. For information about changing passwords, see Chapter 4, Managing Users and Roles in the Cisco Application Policy Infrastructure Controller Enterprise Module Configuration Guide.
Performing Password Recovery with No Existing Administrator
The following procedure describes how to perform password recovery where there exists only one controller administrator (ROLE_ADMIN) user account and this account cannot be successfully logged into.
Note | We recommend that you create at least two administrator accounts for your deployment. With two administrator accounts, if one account is locked for whatever reason then the other account can be used to unlock that locked account. |
Performing Password Recovery for the Linux Grapevine User Account
You can use the following procedure to recover from the loss of the Linux grapevine user password. This procedure reconfigures the Linux grapevine user password that is required for accessing the host's Linux operating system.
You should be logged into the host (physical or virtual) using a Linux console to access the Linux kernel.
Step 1 | Reboot the host (physical or virtual) while logged into the Linux console. | ||
Step 2 | Press "e" upon
seeing the GNU GRUB menu to edit the boot commands.
| ||
Step 3 | Search for the
line in the GNU GRUB menu output that begins with "linux" and change “ro” to
“rw”, and append "init=/bin/bash" to that line.
For example, search for this line: linux /vmlinuz-3.13.0-24-generic root=/dev/mapper/grapevine--vg-root ro cgroup_enable=memory swapaccount=1 quiet sqlash $vt_handoff And change it to this line: linux /vmlinuz-3.13.0-24-generic root=/dev/mapper/grapevine--vg-root rw cgroup_enable=memory swapaccount=1 quiet sqlash $vt_handoff init=/bin/bash | ||
Step 4 | Press
Ctrl-x or the
F10 key to proceed with the boot process.
At this point, the host will boot up in root mode. You can now enter the Linux passwd command to reset the password for the Linux grapevine user. | ||
Step 5 | Enter the Linux
passwd
command to reset the password for the Linux grapevine user.
$ passwd grapevine
| ||
Step 6 | When prompted, enter a new Linux grapevine password. | ||
Step 7 | When prompted, confirm the new Linux grapevine password by entering it a second time. | ||
Step 8 | Enter the
following
reboot
command to reboot the system.
$ /sbin/reboot -f The system reboots and will start up with new configuration and password. At the end of the reboot process, you are presented with the GNU GRUB menu. | ||
Step 9 | Press Enter to boot up in the Ubuntu OS. | ||
Step 10 | After booting up
in the Ubuntu OS, log back into the host by entering your Linux grapevine
username and password.
| ||
Step 11 | Restart the
configuration wizard using the following command.
$ config_wizard Proceed through the configuration wizard process by clicking next>> and accepting the pre-configured values until you reach the LINUX USER SETTINGS step.
| ||
Step 12 | When prompted
to enter values for the
LINUX
USER SETTINGS, enter the new Linux grapevine password that you
created earlier in step 6.
| ||
Step 13 | Click
next>> and continue through the configuration
wizard process, until the last step of this process.
| ||
Step 14 | At the end of the configuration wizard process, click proceed>> to have the configuration wizard save and apply your configuration changes to the Cisco APIC-EM. |