technology, networking and IP telephony
Factory Reset Nortel Ethernet Switch
There can be times when you need to factory reset a switch. This process can be accomplished through the CLI but if you’ve lost the switch password you’ll need to follow a special process. This process should work for any of the Ethernet Switches (450, 460, 470) and the Ethernet Routing Switches 2500 Series, 4500 Series, 5500 (5510, 5520, 5530) Series. There is a different process to recover lost passwords on the Ethernet Routing Switch 1600 and 8600. Please note that by factory resetting the switch you will loose all configuration settings. It will be as if it just arrived from the “factory”.
Follow these steps:
- Connect to the console port of the switch (9600,8,N,1)
- Reboot the switch.
- When the first line of the diagnostics tests is displayed, press CTRL-C. The system then displays a menu.
- Select option “i” to factory default the switch.
- Select option “a” to run the agent code.
Upon boot up, the switch will be in a factory default configuration.
Cheers!
Related posts:
- #2 written by Michael McNamara 4 years ago
Hi Thomas,
Thanks for the comment. I can see that you’ve been around the block a few times with the Nortel switches.
While we’re on the topic there’s also another problem folks can run into when they set both the RO and RW passwords the same. Whenever you log into the switch it will assume the READ-ONLY user, leaving you unable to make any changes. A quick workaround is to use the Web GUI (if it’s enabled) to log into the switch as the RW user (provide the username of RW along with the RW password). When your inside the Web GUI you can change the passwords.
Thanks again for the feedback Thomas!
- #3 written by Anonymous 4 years ago
I have a Baystack 310-24T Reset Password and I’ve tried using the method Michael suggested and it’s not working. No matter what command I give it, it runs POST and ask for password when it’s done. Here is the output:
Bay Networks 310-24T Ethernet Switch
Copyright (C) 1999, Bay Networks, Inc.**********************************************************************
Power On Self TestUART Local Loopback Test PASSED
CPU Test PASSED
STACK DRAM Test PASSED
DRAM Test PASSED
Watch Dog Timer Test PASSED
Timer Module Test PASSED
FLASH Image Checksum Test PASSED
Software Version [1.6.5 ]
~Enter ‘.RETURN to go to Boot Options Menu
Booting Switch software
Decompressing …Eventually, it ask for a password. I hit the CRTL-C command just when I see:
Enter ‘.RETURN’ to go to Boot Options MenuI really would appreciate any help to get into this switch and reset the password. I really would. I’ve opened it to see if there is a battery there I could take out, but found none. Please help.
Michael-not the owner of this blog - #4 written by Michael McNamara 4 years ago
The BayStack 310 was one of the original Ethernet switches in the BayStack product line so it looks like it doesn’t conform to the procedure I’ve outlined above.
What are the options if you follow the prompt, “Enter ‘.RETURN to go to Boot Options Menu”?
One of those options might be to reset the flash NVRAM, which is the configuration.
- #6 written by Michael McNamara 4 years ago
Hi Michael,
What are the options it gives you? Can you post a copy of the options from HyperTerminal (or whatever application your using to access the serial port).
I don’t personally have access to a BayStack 310 switch so I can’t really add anything. I would be very surprised though if there wasn’t some option that allowed you to reset the switch configuration since I believe the BayStack 310 was released after the BayStack 450 switch, and that supports “initialize NVRAM” the option that clears the configuration.
Sorry,
Mike - #8 written by Michael McNamara 4 years ago
I did some research today and made some calls and found the following. The BayStack 350/450 switches do not support resetting the configuration (password). The very early versions of software (boot code/agent code) did support a backdoor password “NetICs” which needed to entered within the first 30 days of a switch booting, however, later versions did not support any method of resetting the switch locally. I’m not 100% clear on this but some believe that Nortel might be able to generate a onetime password based on the MAC address of the switch. You would, of course, need a maintenance support contract with Nortel. Someone also brought up the possibility of stacking the switch with another switch although I don’t believe the BayStack 310 model supported stacking.
Here’s the manual from Nortel;
http://www25.nortelnetworks.com/library/tpubs/pdf/switches/bstack/310/201875A.PDFSorry but it seems like you might be out of luck.
Mike
- #12 written by Anonymous 3 years ago
- #14 written by Anonymous 3 years ago
Sorry, Yes through hyperterm.
I used a straight through cable with mod adapters on each end. I am now getting
BayStack 350T Self-Test
ASIC addressing test … Pass
ASIC buffer RAM test … Pass
Physical layer test … Pass
Port internal loopback test … Pass
Self-test complete.
But right after this I get odd characters and the output completely stops…Any ideas!? - #15 written by Pete 3 years ago
Hello all,
I ve got a 470-24T which i need to access with RW, but cannot do so through web, nor can access R. I can connect to it through telnet and get access to priviliged level (exec) on the command line. Is there a way i can reset this switch either to a RW password or default? Help please. I am very much interested in the command line to reset the whole switch or the username and passsword. I did enter same password for RW and R and i was never given a chance to accept or deny the changes. Web access ….. - #16 written by Michael McNamara 3 years ago
Hi Pete,
If I understand your post you’re having issues because you set the RW and RO to the same password?
Unfortunately that can leave you locked out from the RW account, although there is a fix. Login to the switch from the web GUI and change the RO password. When logging into the web GUI you obviously need to use the RW account and password.
Good Luck!
- #20 written by Michael McNamara 3 years ago
Hi Pawel,
The Nortel Business Ethernet Switch (BES) is a relatively new product as you’ve noted. There are some posts
on Tek-Tips that make reference to resetting the password on a BES;http://www.tek-tips.com/viewthread.cfm?qid=1451699&page=1
Looking at the documentation is seems that the default username and password are the same as the Business
Communication Manager (BCM) and Survivalbe Remote Gateway (SRG);Username: nnadmin
Password: PlsChgMe!Actually on page 185 of the Using
the Nortel Business Ethernet Switch 100/200 Series manual indicates that you can factory reset the switch using the button
on the front of the switch.Reset button – for reset to factory default
The reset button resets the switch and sets all switch properties to the factory default values.Cheers!
I have a 5510 that, when powered on, just flashes the following LEDs: PWR, RPSU, STATUS, BASE, UP, DOWN, and IN USE and LINK on both of the SFP slots. I get no boot text at all from the Console port. Any idea if this is a fixable issue? I’ve opened it up and reseated the memory module without any effect. There are some jumpers ion the main board but no labelling…
Hi Ben,
Are you using a straight-thru serial cable at 9600, 8, N, 1? It certainly sounds like there is a problem with the switch. Unfortunately, if you can’t get anything from the console I think you may be sunk. Sorry for the bad news but there might be a bright spot.
I believe all Nortel Ethernet Routing Switches come with a lifetime warranty. I would suggest contacting your reseller or perhaps even Nortel directly.
Cheers!
- #23 written by Geoff 2 years ago
Michael,
I have a few stacks of 5520/5530 switches and over the past 6 months or so I have had issues with corrupted passwords which is giving me some grief. I have read through this forum and it looks like I should be able to do the TFTP save, modify, upload that is mentioned to get a known password back on the stacks. I’m wondering though if this is a common occurance with these switches. My problems seem to have been the result of power failures/fluctuations which have caused the stack to reboot but something has gone wrong and one or more switches in the stack have not booted up cleanly and joined the stack. After forcing another reboot the stack has come up with all switches in it but the console/ssh password has been scrambled. The SNMP authentication still works though.FW – 5.0.0.4 SW 5.0.4.011
Also – thanks for putting this site together. I have found very little useful information on Nortel gear around the web but this is the exception.
Hi Geoff,
There was a bug in some version of code (can’t remember right now) where the switch configuration would become corrupted if the stack had a switch drop out and then recover. We predominantly saw this on the Ethernet Switch 470 since our network has more 470 switches than any other model.
There was also another bug where the CLI interface would stop working but SNMP would still function. You could log into the switch but you couldn’t access anything other than the basic CLI menu, selecting anything wouldn’t get you anywhere, the switch essentially wouldn’t respond selecting anything past the main menu.
I’m currently using 5.1.3 software for the 5500 series without any issues and 3.7.3 software for the 470/460 without any issues.
As for how to recover from the problem. You’ll probably need to upgrade the switch to 5.1.x in order to enable ASCII TFTP upload support. You can then use Nortel’s Device Manager to upload the configuration in ASCII to a TFTP server. You can then edit the ASCII configuration changing the passwords and download it back to the switch. The switch WILL RESET ITSELF after you down the configuration so be prepared for a short downtime period.
In case you have any problems with the steps above you should probably be prepared by copying the configuration to your laptop and be prepared to factory reset the switch and then re-program it from the CLI interface by cutting and pasting the ASCII configuration file that you got from the TFTP upload.
We’ve had to-do this process with about 8 stacks already over the past 24 months (we have about 200 stacks in the network so we’re not too bad off).
Good Luck!
- #25 written by ai 2 years ago
Dear sir…..i have problem with the user of the switch norte 470-24t, i try to make passwod read community but not the user of the switch then after i logout the switch shoud fill the user n pass, unfortunetly i cant to reach of the menu. so….do you have any suggestion…..how to reset the switch?
ps : i make the pass of read community with telnet (remote mode/ far a way from the switch)
thx.
i wait your comment soon.
- #27 written by Wayne 2 years ago
Hey Michael,
I have a Nortel 450-24t with an admin password set that has been lost\forgotten\etc. I followed your directions at the top of this post with no joy. Is there a SW version issue I need to know about?
When I reset the power to the switch and press CTRL-C when the POST begins I get no menu. I am cabled to the switch using 9600-8-n-1. What am I missing?
Hi Wayne,
You can try the simple thing… perhaps you need a null-modem or crossover cable. If you have another switch you can test your serial cable and see if you get a login prompt with that switch. If you get a login prompt then your serial cable is good. Perhaps the switch is bad? It should work for a Nortel BayStack 450 24T.
Good Luck!
- #29 written by Mark 2 years ago
Hi All, my nortel baystack 450-24 t switch doesnt respond to the recomendations you guys have. the break does not break its post testing and ?NetICs does not work for the password… what I did notice is when i put secure or user it then asks for switch password… I have been stuck on this for days .. please help and keep up the great site.
Hi Scott,
Unfortunately the NetICs trick is for the really old Nortel (Bay Networks) BayStack 450 switches. It usually doesn’t apply to the 24T which was a later model. Could you post, just cut and paste, the ascii output from when the switch boots up till it’s waiting for a login? Only later versions of the software asked for a username, previous versions only asked for a password.
Good Luck!
Thanks everyone for your help, well the switch is not asking me for a username just a password. When i put the password’secure’ or i put ‘user’ it then says “Please Enter SWITCH Password.” the ascii post output is real fast and i can’t break with ctrl C pressing it takes me to nortel splash screen with this info,
Nortel Networks
Copyright (c) 1996,2000
All rights Reserved
Baystack 450-24T
Versions: HW:RevL FW:V1.47 SW:v3.1.0.22 ISVN:1
Does anybody in the community know what it is im doing wrong?
Thanks in advance and love the site!!- #35 written by cinthya 2 years ago
Hello,
i trying to connect a terminal server (cyclades) to a ERS5000.
I am using a roll over cable from the terminal server to the ERS5000 console port.
I am also using a RJ45 to DB9 female connector but I dont know the correct configuration for it.
Do you know what is the correct configuration???Best Regards,
Cinthya
- #37 written by Adil Khan 2 years ago
Hi Adil,
The short answer to your question is no. With that said some folks have reported success in “stacking” a second switch with the first switch. When two or more switches are stacked together there is a different password field used in a stack configuration as opposed to a standalone configuration.
The default configuration is no password, so if you stack your 5510 with another switch you might be able to access the console without any password.
With that said you should be prepared to reconfigure the switch if the configuration gets all messed up as a result of stacking the switch.
Good Luck!
- #39 written by CHRIS 2 years ago
Hi Chris,
With respect to re-setting the read-only and read-write passwords of the switch; if the switches you are working with are already stacked then your only hope is the TFTP config trick that was mentioned earlier in the comments of this post.
I would strongly advise you to proceed with caution since any little mistake might leave you rebuilding the configuration so you might want to make sure the configuration is fully documented before you begin.
Good Luck!
- #42 written by Kitti 1 year ago
Hi Kitti,
There is no such option from Avaya/Nortel. You need to erase the FLASH which will erase everything including the configuration and stored passwords.
With that said if you have SNMP access and the switch is running a recent version of software you can perform an ASCII configuration backup to a TFTP server from Java Device Manager, perform the factory reset and then restore the ASCII configuration file you previously backed up.
I would strongly advise that you proceed with caution and make sure you have a backout plan just in case things don’t go well.
You may want to check out the discussion forums for additional tips and tricks.
Good Luck!
- #44 written by Matthew Bostedt 1 year ago
Hey Michael.
Just wanted to thank you for putting this up. We just did a complete infrastructure overhaul, replacing all of our Cisco devices with Nortel, and we’ve been having all kinds of issues figuring out the simplest tasks. This whole page is immensely helpful. You’ve just made several customers very happy. Thank you so much.
-Matt
Hi Matt,
I’m happy to hear that you’ve found the information useful and helpful!
You might want to peruse the dicussion forums. If you have any quetsions please feel free to post them in the forums!
Cheers!
- #46 written by Kitti 1 year ago
Hi Kitti,
Your question is off topic but I’ll answer it. In the future please use the discussion forum for any questions you might have that aren’t directly related to the content of the post.
Unfortunately if you don’t have CLI access I believe the only way to recover the device is to contact Radware support where they can issue you a one-time recovery password based on the MAC address of the switch.
If you have CLI access then you can read further.
I’ve posted the Command Reference manual for the Nortel Application Switch v23.0.2 where you’ll find the option on page 55.
Here’s the text:
There is also a factory configuration block. This holds the default configuration set by the factory when your Nortel Application Switch was manufactured. Under certain circumstances, it may be desirable to reset the switch configuration to the default. This can be useful when a custom-configured Nortel Application Switch is moved to a network environment where it will be re configured for a different purpose.You need to execute the following command, the second of which will reset the switch
/boot/conf factory
/boot/resetThis obviously assumes that you have CLI access.
Good Luck!
- #48 written by Harry 1 year ago
Hi Harry,
You’ll need a stright thru cable in order to access the serial interface. A null modem or cross-over cable flips the Tx/Rx wires so the Tx of one device lands on the Rx of the other device and vice versa.
Once you have HyperTerminal running (9600,8-N-1) try hitting Ctrl-Y to start the session.
You may wish to browse the discussion forums for additional hints and tips.
Good Luck!
- #50 written by JohnJ 1 year ago
HI Michael,
I hope you can help me with my issue also, this is my first time also to configure a Nortel Baystack 5520-48T-PWR switch. Like most networking techs I am more into Cisco.. first issue is I can’t console to the switch coz I can’t find the console cable for the device, the only cable that I was able to find was this DB-9 cable with male on one end and female on the other end, and I found also a cable which was labeled by the previous engineer for our core switch 8300 & contivity 1700 that has like an LPT and DB9 female connector on both end, I tried to use this but didn’t work on consoling the switch. So in order for me to get it to the SWITCH I did the IP reset where you have to press the UI button for 3secs then 5 times and 3 secs again and it will reset the IP to 192.168.192.168 and I configured the device via web. Now the thing is I was playing around with the areas of the config and im not pretty sure what config I did change and now I can nolonger access the switch via it’s IP 192.168.192.168. Is there a way to perform reset to factory default by using the UI button?? Note: Through console is not an option as I don’t have the console cable…
Thanks in advance man.
John
- #52 written by geoffsmith31 1 year ago
John,
the 5520 switch needs a 9 pin male to 9 pin male straight through cable. You can make one up by using an RJ-45 joiner to connect 2 Cisco console cables together – you probably have some of them as it sounds like you are a Cisco-phile ;) I have done this myself and it works fine.Once you have a console connection you can break into the switch boot sequence and reset to factory defaults.
Good Luck.
Sir,
I have a 5510-48port pwr switch that has a password issue. I did a software upgrade to secure software and the password that was on board had caricatures that are not allowed in the new build (6.1.2.0.29) the upgrade went fine but now the RW pass does not work, I can only get in with ro. I would love to not have to reset to factory, is there a way to get rw access again?Hi Mike,
Assuming that you have SNMP access (read-write) you might try using Java Device Manager to download an ASCII configuration file that has the necessary commands to reset the passwords. I’m not sure if this will work with the secure version of software since I believe it requires an interactive response when setting the passwords.
Another solution (more likely to succeed) again assuming you have SNMP access (read-write) would be to backup the switch configuration to a TFTP server, perform both the BINARY and ASCII configuration backups. You could examine the ASCII configuration file to see if it sets the passwords – I don’t believe the passwords get set in the ASCII configuration file. You could factory reset the switch and then restore the ASCII configuration file.
Good Luck!
- #56 written by ali 1 year ago
- #58 written by Rafi 1 year ago
- #61 written by Charles Porter 1 year ago
- #63 written by Charles Porter 1 year ago
- #65 written by Blake Young 5 months ago
- #66 written by Geoff 1 year ago
Hi Michael. I’ve lost the RW password on a 1624G. It’s been in service with no problems, just need to move it to a new location on the network. Biggest problem is, I can’t get into the switch through the console port, I’m using the same cable I use on all the other Nortel switches with no problem, so not the cable. I just get no response on the ‘hyperterm’ screen The only way I can see anything on the switch is through the management port on DM but only ‘read only’ Hope you can help..
Hi Geoff,
The cable on the ERS 1600 series switch is opposite (null) of the cable used Nortel/Avaya’s other switches (ES460, ES470, ERS4500, ERS5500, etc). If you’ve lost RWA username/password then hopefully you still have the RW SNMP community string because without it you’re going to need to factory reset the switch to recover.
The one chance you might have is trying to copy the config file from the switch to a TFTP host using the RO username/password. I think that might work.
Good Luck!
- #68 written by Geoff 1 year ago
You’ll need to troubleshoot the problem. Either your cable is bad, your terminal emulator is mis-configured or the switch is not responding. If you boot the switch do you get anything on the terminal emulator?
As a side note you realize that the procedure documented above does NOT cover the ERS 1600 series switch. Depending on the software release the switch is running you might be able to follow the process for the ERS 8600 switch.
http://blog.michaelfmcnamara.com/2007/12/factory-reset-nortel-ethernet-routing-switch/
Good Luck!
- #70 written by Geoff 1 year ago
Yes, sorry you were correct, it did require and null cable, with the correct cable all good and the display does comes up with the diagnostics tests, all OK. I have tried the reset for the 8600 series as you’ve outlined above, but their’s no response using the ‘return’ key or ‘ctrl C’ procedure as the tests starts. Your’ve mention their’s another procedure to ‘factory reset’ the 1600 depending on s/w release.
That’s the older version… I haven’t worked with that switch in years. I don’t know how you’d factory reset that switch. I do remember that there was an option within Java Device Manager under the Edit -> Chassis tab, this assumes that you have RW SNMP access to the switch.
I would expect that there might be some option to interrupt the boot process and then reset the configuration, but I’ve never done it personally on that switch with that older software.
Good Luck!
- #76 written by DL 11 months ago
- #78 written by MAx 9 months ago
Hi Max,
You should have read the previous comments… you would have discovered that you need to use a serial communications program such as HyperTerminal.
http://blog.michaelfmcnamara.com/2007/11/factory-reset-nortel-ethernet-switch/#comment-1879
You’ll also need a straight-thru serial cable between your COM port and the switch.
I believe you can use the same process documented in the original post to factory reset the BPS2000.
Good Luck!
- #80 written by Abe 8 months ago
Hello Michael
i am new to Nortel switches and i am having problems consoling to the 5520-48T-PWR. I am using a null modem cable, hyperterminal with ocrrect settings, yet with everything connected and i boot the switch i am not seeing anything on my HT screen nor am i able to get to the CLI prompt.
What am i NOT doing corectly?
- #82 written by Geoff Smith 8 months ago
Abe,
You need a straight-through serial cable (not a null modem cable). If you dont have a straight-through cable get two RJ-45 to DB-9 headshells that are the same (cisco, enterasys, HP, whatever – so long as the two are the same) and plug them together with a straight-through CAT-5/6 cable and bingo – straight-through serial cable for a Nortel switch. Once this is connected and you are running HT hit CTRL-Y (X-ON) and you should get the CLI or menu for the switch - #84 written by Eric 7 months ago
I am having issues connecting Nortel Baystack 5510-48T ethernet switches via console cable. I do not have the IP address of the switches so connecting to them that way is not an option. I have read the posts and tried all of the options there but I still cannot get any response from the switch and nothing shows up in the terminal window. I am using hyperterminal with a straight console cable. Any help would be much appreciated.
Hi Eric,
If you’ve reviewed all the comments above then you should have everything you need. If you still can’t make any headway you’ll need to troubleshoot the problem. I would recommend you start by eliminating your serial cable and terminal emulator… do you have another switch you can try or another device? If your serial cable works fine then the switch might be dead.
Good Luck!
- #87 written by Abhik 7 months ago
Hi Abhik,
It’s very difficult to provide you any feedback as there aren’t enough details to really draw any conclusions. If you reset the switch does the network return to service? I would probably perform some back troubleshooting to start. Is there link to the desktop/laptop or other edge device? If so does the edge device have an ARP table? (arp -a) If the switch is managed (I believe the 2526 is managed) what does the MAC/FDB table look like on the switch? Is it correct? What if you try and run a packet capture using WireShark?
I would suggest you post any follow-up in the discussion forums.
Good Luck!
- #89 written by Abhik 7 months ago
- #90 written by Ammon 6 months ago
Hey Michael,
I’ve been working on a Nortel Baystack 450-24T with Firmware at V1.47 and Software at v3.1.0.22. I’m able to view and interacted with the console via a straight through connection to my serial port using putty. From the moment I reboot the switch I am pressing ctrl-Break (the control to send a break signal in putty, I have also tried ctrl-c). No menu appears. Is there a specific terminal program I should use?
Hi Ammon,
The procedure documented in the original post doesn’t work for the BayStack 450 24-T. Apparently though (depending on software version) you might be able to use the following procedure.
“Power up the switch and when the console port prompts for the password, enter NetICs (this is case sensitive). Don’t bother going to the password page to see what the secret password was, and to change it because this won’t stop a request for the password on the next boot. Instead, in the main menu choose “Reset to Default Settings”. The switch won’t ask you for a password anymore. Reset the switch, if it didn’t already give you the Control-Y screen again (depends on SW version).”
Good Luck!
Hi Michael,
Well, I’d like to know if it is possible to reset a Nortel Switch (2526T) using telnet acess, but i dont remember the RW password, just the RO. Then I’d like to reset it to change the RW password. I tryed to do what you said but it didnt work because i cant connect to the console through Hyper Terminal even using 9600, 8, N, 1. Could you help me?
You’ll need to physically console up to the switch to factory reset it. You need a straight-thru cable at 9600, 8, N, 1. Power cycle the switch when you are connected to the console and you should see the boot process. If that doesn’t work you need to validate that your serial cable and terminal emulator are working properly.
Good Luck!
I would try and determine why you can’t make a serial connection, or try a different device to prove or disprove your setup. You need the serial connection to the console.
Yes, you can factory reset the switch if you have the RW password but how are you going to reconfigure it without access to the console port?
Good Luck!
- #97 written by Charles Milanya 5 months ago
hi am in charege of a network with more than 3000 users i use smnp sofware to monitor the status of the network (watup gold) by ipswitch one of my edge switch Nortel Baystack 5520-48T is indicating to be down yet not i cannot ping it or reach it via any remote connection means,i have restated the switch several times is behaves for at most 30 min the shows to be down again. The smnp is enabled on it just wanted to know wat might be the problem and how to sort is
thanx
charles
Nairobi
Kenya.Hi Charles,
Please post your question over on the discussion forums. It’s really off-topic for this post.
http://forums.networkinfrastructure.info/nortel-ethernet-switching/
Good Luck!
- #100 written by Geoff Smith 2 months ago
- #101 written by Geoff Smith 2 months ago
- #103 written by Arjun Thaker 3 weeks ago
- Comment Feed for this Post
Hi Michael,
There is a clever way to reset the password without losing configuration nor reboot.
Though only possible when
1) you still have SNMP-access
2) the software agent allows downloading the ASCII config of the switch to TFTP
So this is how to do it:
- With JDM instruct the switch to put the ASCII config on your TFTP
- Edit the line for the telnet/console password en set it to ‘none’
- Save the config file
- Upload it to the switch
Result will be that you can login without password en be able to set a new password.
Compliments on the informational site!