Factory Reset Nortel Ethernet Switch

There can be times when you need to factory reset a switch. This process can be accomplished through the CLI but if you’ve lost the switch password you’ll need to follow a special process. This process should work for any of the Ethernet Switches (450, 460, 470) and the Ethernet Routing Switches 2500 Series, 4500 Series, 5500 (5510, 5520, 5530) Series. There is a different process to recover lost passwords on the Ethernet Routing Switch 1600 and 8600. Please note that by factory resetting the switch you will loose all configuration settings. It will be as if it just arrived from the “factory”.

Follow these steps:

  1. Connect to the console port of the switch (9600,8,N,1)
  2. Reboot the switch.
  3. When the first line of the diagnostics tests is displayed, press CTRL-C. The system then displays a menu.
  4. Select option “i” to factory default the switch.
  5. Select option “a” to run the agent code.

Upon boot up, the switch will be in a factory default configuration.

Cheers!

{ 118 comments… add one }

  • Thomas C January 19, 2008, 9:25 am

    Hi Michael,

    There is a clever way to reset the password without losing configuration nor reboot.

    Though only possible when
    1) you still have SNMP-access
    2) the software agent allows downloading the ASCII config of the switch to TFTP

    So this is how to do it:
    - With JDM instruct the switch to put the ASCII config on your TFTP
    - Edit the line for the telnet/console password en set it to ‘none’
    - Save the config file
    - Upload it to the switch

    Result will be that you can login without password en be able to set a new password.

    Compliments on the informational site!

  • Michael McNamara January 19, 2008, 5:35 pm

    Hi Thomas,

    Thanks for the comment. I can see that you’ve been around the block a few times with the Nortel switches.

    While we’re on the topic there’s also another problem folks can run into when they set both the RO and RW passwords the same. Whenever you log into the switch it will assume the READ-ONLY user, leaving you unable to make any changes. A quick workaround is to use the Web GUI (if it’s enabled) to log into the switch as the RW user (provide the username of RW along with the RW password). When your inside the Web GUI you can change the passwords.

    Thanks again for the feedback Thomas!

    • ankit sharma January 19, 2013, 6:55 am

      Hello,

      I Have a Nortel Ethernet Routing Switch 5530-24TFD, it get the follow error on boot up:

      Booting…

      Testing Memory………………………….

      Starting..

      Ethernet Routing Switch 5530-24TFD

      Hardware Rev : 3

      CPU CLOCK :400000000
      Resets: 98.
      Initializing Flash..
      Reading MAC Address..
      MAC Address:
      Initializing Switch CBs
      PCI unit 0: Dev 0×5675, Rev 0×02, Chip BCM5675_A0, Driver BCM5675_A0
      PCI unit 1: Dev 0×5695, Rev 0×11, Chip BCM5695_B0, Driver BCM5695_A0
      PCI unit 2: Dev 0×5695, Rev 0×11, Chip BCM5695_B0, Driver BCM5695_A0
      Attaching SOC unit 0… PCI device BCM5675_A0 attached as unit 0.
      Attaching SOC unit 1… PCI device BCM5695_B0 attached as unit 1.
      Attaching SOC unit 2… PCI device BCM5695_B0 attached as unit 2.

      Diagnostic Version 6.0.0.10 Jan 28 2010, 11:58:40

      Time : 2006 08/30 01:40:43

      Test 102 ROM Config – PASSED
      Test 104 FANs – PASSED
      Test 105 Ext Flash Id Get – PASSED
      Test 106 USB Register Test – PASSED
      Test 207 XGS SWITCH Registers – PASSED
      Test 208 FABRIC Registers – PASSED
      Test 211 PHYs Register – PASSED
      Test 212 Internal Loopback – PASSED
      Press Esc to Enter Diag
      Run Agent 1 Ver:6.2.0.008

      Decompressing the image … done.

      Target Name: tgt
      User: target
      usrNetDevNameGet: no network device
      done
      Code Segment 0×100000 — 0xfe3fff protection=2

      Initializing ……
      ERROR: Assertion failed: (sem) at sync.c:250

      plz if any solution the assertion fail then reply me on my email id (anksharma206@gmail.com)

  • Anonymous January 20, 2008, 1:36 am

    I have a Baystack 310-24T Reset Password and I’ve tried using the method Michael suggested and it’s not working. No matter what command I give it, it runs POST and ask for password when it’s done. Here is the output:
    Bay Networks 310-24T Ethernet Switch
    Copyright (C) 1999, Bay Networks, Inc.

    **********************************************************************
    Power On Self Test

    UART Local Loopback Test PASSED
    CPU Test PASSED
    STACK DRAM Test PASSED
    DRAM Test PASSED
    Watch Dog Timer Test PASSED
    Timer Module Test PASSED
    FLASH Image Checksum Test PASSED
    Software Version [1.6.5 ]
    ~

    Enter ‘.RETURN to go to Boot Options Menu
    Booting Switch software
    Decompressing …

    Eventually, it ask for a password. I hit the CRTL-C command just when I see:
    Enter ‘.RETURN’ to go to Boot Options Menu

    I really would appreciate any help to get into this switch and reset the password. I really would. I’ve opened it to see if there is a battery there I could take out, but found none. Please help.
    Michael-not the owner of this blog

  • Michael McNamara January 20, 2008, 11:56 am

    The BayStack 310 was one of the original Ethernet switches in the BayStack product line so it looks like it doesn’t conform to the procedure I’ve outlined above.

    What are the options if you follow the prompt, “Enter ‘.RETURN to go to Boot Options Menu”?

    One of those options might be to reset the flash NVRAM, which is the configuration.

  • Anonymous January 27, 2008, 11:10 am

    That’s not one of the options it gives me; to reset NVRAM.

    You seem to know about these things-a lot. Is there any other way you could help me, please. I mean please.

    Thanks,
    Michael

  • Michael McNamara January 27, 2008, 9:08 pm

    Hi Michael,

    What are the options it gives you? Can you post a copy of the options from HyperTerminal (or whatever application your using to access the serial port).

    I don’t personally have access to a BayStack 310 switch so I can’t really add anything. I would be very surprised though if there wasn’t some option that allowed you to reset the switch configuration since I believe the BayStack 310 was released after the BayStack 450 switch, and that supports “initialize NVRAM” the option that clears the configuration.

    Sorry,
    Mike

  • Anonymous January 27, 2008, 10:40 pm

    Hi Mike:

    Thanks a lot. I will try and post the output here soon. I really need this open, so I won’t even mind sending it to you; if that what it will take.

    Regards,
    Michael

  • Michael McNamara January 28, 2008, 9:15 pm

    I did some research today and made some calls and found the following. The BayStack 350/450 switches do not support resetting the configuration (password). The very early versions of software (boot code/agent code) did support a backdoor password “NetICs” which needed to entered within the first 30 days of a switch booting, however, later versions did not support any method of resetting the switch locally. I’m not 100% clear on this but some believe that Nortel might be able to generate a onetime password based on the MAC address of the switch. You would, of course, need a maintenance support contract with Nortel. Someone also brought up the possibility of stacking the switch with another switch although I don’t believe the BayStack 310 model supported stacking.

    Here’s the manual from Nortel;

    http://www25.nortelnetworks.com/library/tpubs/pdf/switches/bstack/310/201875A.PDF

    Sorry but it seems like you might be out of luck.

    Mike

  • Anonymous January 29, 2008, 2:47 pm

    Mike:
    Thanks so much for all your work on this. Since I have 3 of these, I’m ready to open, fiddle, and test. I’m thinking hard-reset. Please let me know if you can think of anything I could do while I’m in there.

    Kind regards,
    Michael

  • Anonymous February 4, 2008, 12:17 am

    Hi
    Was the hard reset successful?

  • Planoboy February 9, 2008, 5:13 pm

    I need some help with Baystack 350T console port. I use a straight thru null modem and nothing appears on the screen. What am I doing wrong?

  • Anonymous February 10, 2008, 3:13 pm

    When you say on-screen, what screen do you mean? You should go to hyper terminal that’s in windows to be able to see anything.

    You can get to it by going to run>cmd>hypertrm

    Is your switch port managed. After months of working on mine, I find out the ports are 10BaseT. I need 24…anyone?

  • Anonymous February 10, 2008, 3:14 pm

    ..sorry, I meant I need a port managed switch that’s 100BaseT. Anyone…?

  • Anonymous February 22, 2008, 11:11 am

    Sorry, Yes through hyperterm.
    I used a straight through cable with mod adapters on each end. I am now getting
    BayStack 350T Self-Test
    ASIC addressing test … Pass
    ASIC buffer RAM test … Pass
    Physical layer test … Pass
    Port internal loopback test … Pass
    Self-test complete.
    But right after this I get odd characters and the output completely stops…Any ideas!?

  • Pete March 6, 2008, 4:39 pm

    Hello all,
    I ve got a 470-24T which i need to access with RW, but cannot do so through web, nor can access R. I can connect to it through telnet and get access to priviliged level (exec) on the command line. Is there a way i can reset this switch either to a RW password or default? Help please. I am very much interested in the command line to reset the whole switch or the username and passsword. I did enter same password for RW and R and i was never given a chance to accept or deny the changes. Web access …..

  • Michael McNamara March 8, 2008, 11:24 am

    Hi Pete,

    If I understand your post you’re having issues because you set the RW and RO to the same password?

    Unfortunately that can leave you locked out from the RW account, although there is a fix. Login to the switch from the web GUI and change the RO password. When logging into the web GUI you obviously need to use the RW account and password.

    Good Luck!

  • Anonymous March 10, 2008, 12:08 pm

    I can not logon through the Web GUI. I can telnet to it and get access to the command line with privileged mode. I need some CLI that will let me change the password. Can you help.

  • Michael McNamara March 11, 2008, 10:13 pm

    Have a look at this post and let us know if that is what you’re looking for.

    Cheers!

  • pawel March 19, 2008, 7:26 pm

    Hi Michael,

    do you know how to clear passwords on Nortel BES120-24T PWR Business Ethernet Switch 120?

    I can reset config from Boot menu config, but not passwords. On unit I have it was to clear it form Boot menu. Do you have any idea how to do it?

    Regards,
    P.

  • Michael McNamara March 19, 2008, 8:11 pm

    Hi Pawel,

    The Nortel Business Ethernet Switch (BES) is a relatively new product as you’ve noted. There are some posts
    on Tek-Tips that make reference to resetting the password on a BES;

    http://www.tek-tips.com/viewthread.cfm?qid=1451699&page=1

    Looking at the documentation is seems that the default username and password are the same as the Business
    Communication Manager (BCM) and Survivalbe Remote Gateway (SRG);

    Username: nnadmin
    Password: PlsChgMe!

    Actually on page 185 of the Using
    the Nortel Business Ethernet Switch 100/200 Series
    manual indicates that you can factory reset the switch using the button
    on the front of the switch.

    Reset button – for reset to factory default
    The reset button resets the switch and sets all switch properties to the factory default values.

    Cheers!

  • Ben Dalton February 6, 2009, 5:24 pm

    I have a 5510 that, when powered on, just flashes the following LEDs: PWR, RPSU, STATUS, BASE, UP, DOWN, and IN USE and LINK on both of the SFP slots. I get no boot text at all from the Console port. Any idea if this is a fixable issue? I’ve opened it up and reseated the memory module without any effect. There are some jumpers ion the main board but no labelling…

  • Michael McNamara February 7, 2009, 4:36 pm

    Hi Ben,

    Are you using a straight-thru serial cable at 9600, 8, N, 1? It certainly sounds like there is a problem with the switch. Unfortunately, if you can’t get anything from the console I think you may be sunk. Sorry for the bad news but there might be a bright spot.

    I believe all Nortel Ethernet Routing Switches come with a lifetime warranty. I would suggest contacting your reseller or perhaps even Nortel directly.

    Cheers!

  • Geoff March 16, 2009, 8:54 pm

    Michael,
    I have a few stacks of 5520/5530 switches and over the past 6 months or so I have had issues with corrupted passwords which is giving me some grief. I have read through this forum and it looks like I should be able to do the TFTP save, modify, upload that is mentioned to get a known password back on the stacks. I’m wondering though if this is a common occurance with these switches. My problems seem to have been the result of power failures/fluctuations which have caused the stack to reboot but something has gone wrong and one or more switches in the stack have not booted up cleanly and joined the stack. After forcing another reboot the stack has come up with all switches in it but the console/ssh password has been scrambled. The SNMP authentication still works though.

    FW – 5.0.0.4 SW 5.0.4.011

    Also – thanks for putting this site together. I have found very little useful information on Nortel gear around the web but this is the exception.

  • Michael McNamara March 17, 2009, 4:30 pm

    Hi Geoff,

    There was a bug in some version of code (can’t remember right now) where the switch configuration would become corrupted if the stack had a switch drop out and then recover. We predominantly saw this on the Ethernet Switch 470 since our network has more 470 switches than any other model.

    There was also another bug where the CLI interface would stop working but SNMP would still function. You could log into the switch but you couldn’t access anything other than the basic CLI menu, selecting anything wouldn’t get you anywhere, the switch essentially wouldn’t respond selecting anything past the main menu.

    I’m currently using 5.1.3 software for the 5500 series without any issues and 3.7.3 software for the 470/460 without any issues.

    As for how to recover from the problem. You’ll probably need to upgrade the switch to 5.1.x in order to enable ASCII TFTP upload support. You can then use Nortel’s Device Manager to upload the configuration in ASCII to a TFTP server. You can then edit the ASCII configuration changing the passwords and download it back to the switch. The switch WILL RESET ITSELF after you down the configuration so be prepared for a short downtime period.

    In case you have any problems with the steps above you should probably be prepared by copying the configuration to your laptop and be prepared to factory reset the switch and then re-program it from the CLI interface by cutting and pasting the ASCII configuration file that you got from the TFTP upload.

    We’ve had to-do this process with about 8 stacks already over the past 24 months (we have about 200 stacks in the network so we’re not too bad off).

    Good Luck!

  • ai April 1, 2009, 8:19 pm

    Dear sir…..i have problem with the user of the switch norte 470-24t, i try to make passwod read community but not the user of the switch then after i logout the switch shoud fill the user n pass, unfortunetly i cant to reach of the menu. so….do you have any suggestion…..how to reset the switch?

    ps : i make the pass of read community with telnet (remote mode/ far a way from the switch)

    thx.

    i wait your comment soon.

  • Michael McNamara April 2, 2009, 6:11 pm

    Hi AI,

    If you don’t know the ReadWrite password you’ll need to factory reset the switch as the post above indicates. That means you’ll need to physically cable up to the switch and perform a factory reset.

    Good Luck

  • Wayne June 29, 2009, 7:46 am

    Hey Michael,

    I have a Nortel 450-24t with an admin password set that has been lost\forgotten\etc. I followed your directions at the top of this post with no joy. Is there a SW version issue I need to know about?

    When I reset the power to the switch and press CTRL-C when the POST begins I get no menu. I am cabled to the switch using 9600-8-n-1. What am I missing?

    • Michael McNamara June 29, 2009, 5:45 pm

      Hi Wayne,

      You can try the simple thing… perhaps you need a null-modem or crossover cable. If you have another switch you can test your serial cable and see if you get a login prompt with that switch. If you get a login prompt then your serial cable is good. Perhaps the switch is bad? It should work for a Nortel BayStack 450 24T.

      Good Luck!

    • Mark August 26, 2009, 3:55 pm

      I didn’t get a menu either with the cable I was using for Windows HyperTerminal. Then I changed the handshaking from Hardware to None and all was well.

      I just reset the passwords on a bunch of these things in less time than I spent searching the Nortel site (to no avail) for this procedure.

  • Scott July 29, 2009, 1:05 pm

    Hi All, my nortel baystack 450-24 t switch doesnt respond to the recomendations you guys have. the break does not break its post testing and ?NetICs does not work for the password… what I did notice is when i put secure or user it then asks for switch password… I have been stuck on this for days .. please help and keep up the great site.

    • Michael McNamara July 30, 2009, 9:49 pm

      Hi Scott,

      Unfortunately the NetICs trick is for the really old Nortel (Bay Networks) BayStack 450 switches. It usually doesn’t apply to the 24T which was a later model. Could you post, just cut and paste, the ascii output from when the switch boots up till it’s waiting for a login? Only later versions of the software asked for a username, previous versions only asked for a password.

      Good Luck!

  • Scott July 31, 2009, 12:15 pm

    Thanks everyone for your help, well the switch is not asking me for a username just a password. When i put the password’secure’ or i put ‘user’ it then says “Please Enter SWITCH Password.” the ascii post output is real fast and i can’t break with ctrl C pressing it takes me to nortel splash screen with this info,
    Nortel Networks
    Copyright (c) 1996,2000
    All rights Reserved
    Baystack 450-24T
    Versions: HW:RevL FW:V1.47 SW:v3.1.0.22 ISVN:1
    Does anybody in the community know what it is im doing wrong?
    Thanks in advance and love the site!!

    • Michael McNamara July 31, 2009, 6:29 pm

      Hi Scott,

      I’m not sure what to tell you… there were some BayStack 450s that were manufactured early on that didn’t conform to the standard Nortel uses today. That’s where the NetICs thing came from.

      Sorry!

  • Ivy August 18, 2009, 12:56 pm

    On some older Baystack models you have to press ESC then Ctrl/D as soon as testing memory is displayed in order to reset NVRAM using the i option.

  • cinthya September 23, 2009, 11:35 am

    Hello,

    i trying to connect a terminal server (cyclades) to a ERS5000.
    I am using a roll over cable from the terminal server to the ERS5000 console port.
    I am also using a RJ45 to DB9 female connector but I dont know the correct configuration for it.
    Do you know what is the correct configuration???

    Best Regards,

    Cinthya

  • Dan Garcia September 23, 2009, 12:14 pm

    Hi Cinthya,
    Rollover cable doesn’t do the trick. You have to use a straight db9 cable (not null modem) to connecto to the switch

  • Adil Khan December 10, 2009, 8:42 am

    Hi,

    is there a way to reset the password for baystack 5510 without loosing any configs,

    thanks,
    Adil

    • Michael McNamara December 10, 2009, 10:14 pm

      Hi Adil,

      The short answer to your question is no. With that said some folks have reported success in “stacking” a second switch with the first switch. When two or more switches are stacked together there is a different password field used in a stack configuration as opposed to a standalone configuration.

      The default configuration is no password, so if you stack your 5510 with another switch you might be able to access the console without any password.

      With that said you should be prepared to reconfigure the switch if the configuration gets all messed up as a result of stacking the switch.

      Good Luck!

  • CHRIS December 11, 2009, 2:19 am

    Hi Mike,

    our switched are stacked how can i go abt it? . have two 5520.

    Rgds
    Chris

    • Michael McNamara December 12, 2009, 8:53 am

      Hi Chris,

      With respect to re-setting the read-only and read-write passwords of the switch; if the switches you are working with are already stacked then your only hope is the TFTP config trick that was mentioned earlier in the comments of this post.

      I would strongly advise you to proceed with caution since any little mistake might leave you rebuilding the configuration so you might want to make sure the configuration is fully documented before you begin.

      Good Luck!

  • CHRIS December 14, 2009, 1:19 am

    Mike,

    Thanks, i did manage to get the old password . using the GUI interface and the backdoor password.

    Thanks again.
    Chris.

  • Kitti March 1, 2010, 7:04 am

    Hi, Mike

    How can I recovery password on ERS4500 and configuration don’t loss.

    Thank you,

    Kitti

    • Michael McNamara March 1, 2010, 12:48 pm

      Hi Kitti,

      There is no such option from Avaya/Nortel. You need to erase the FLASH which will erase everything including the configuration and stored passwords.

      With that said if you have SNMP access and the switch is running a recent version of software you can perform an ASCII configuration backup to a TFTP server from Java Device Manager, perform the factory reset and then restore the ASCII configuration file you previously backed up.

      I would strongly advise that you proceed with caution and make sure you have a backout plan just in case things don’t go well.

      You may want to check out the discussion forums for additional tips and tricks.

      Good Luck!

  • Matthew Bostedt March 10, 2010, 1:10 pm

    Hey Michael.

    Just wanted to thank you for putting this up. We just did a complete infrastructure overhaul, replacing all of our Cisco devices with Nortel, and we’ve been having all kinds of issues figuring out the simplest tasks. This whole page is immensely helpful. You’ve just made several customers very happy. Thank you so much.

    -Matt

    • Michael McNamara March 10, 2010, 2:21 pm

      Hi Matt,

      I’m happy to hear that you’ve found the information useful and helpful!

      You might want to peruse the dicussion forums. If you have any quetsions please feel free to post them in the forums!

      Cheers!

  • Kitti March 12, 2010, 1:38 am

    Hi Michael,

    Do you have method for default factory ALTEON 2424 SSL?

    Thank you,

    Toa

    • Michael McNamara March 12, 2010, 10:57 am

      Hi Kitti,

      Your question is off topic but I’ll answer it. In the future please use the discussion forum for any questions you might have that aren’t directly related to the content of the post.

      Unfortunately if you don’t have CLI access I believe the only way to recover the device is to contact Radware support where they can issue you a one-time recovery password based on the MAC address of the switch.

      If you have CLI access then you can read further.

      I’ve posted the Command Reference manual for the Nortel Application Switch v23.0.2 where you’ll find the option on page 55.

      Here’s the text:
      There is also a factory configuration block. This holds the default configuration set by the factory when your Nortel Application Switch was manufactured. Under certain circumstances, it may be desirable to reset the switch configuration to the default. This can be useful when a custom-configured Nortel Application Switch is moved to a network environment where it will be re configured for a different purpose.

      You need to execute the following command, the second of which will reset the switch

      /boot/conf factory
      /boot/reset

      This obviously assumes that you have CLI access.

      Good Luck!

  • Harry March 22, 2010, 1:35 pm

    Mike, I’m trying to interface with a Baystack 5510 switch through a Hyperterminal via a desktop PC.. I’m using a DB9 cable, was wondering if I needed a straight thru or Null Modem Cable? And what exactly is the difference between the 2 cables?

    Thanks,
    Harry.

    • Michael McNamara March 22, 2010, 10:52 pm

      Hi Harry,

      You’ll need a stright thru cable in order to access the serial interface. A null modem or cross-over cable flips the Tx/Rx wires so the Tx of one device lands on the Rx of the other device and vice versa.

      Once you have HyperTerminal running (9600,8-N-1) try hitting Ctrl-Y to start the session.

      You may wish to browse the discussion forums for additional hints and tips.

      Good Luck!

  • JohnJ May 17, 2010, 10:08 am

    HI Michael,

    I hope you can help me with my issue also, this is my first time also to configure a Nortel Baystack 5520-48T-PWR switch. Like most networking techs I am more into Cisco.. first issue is I can’t console to the switch coz I can’t find the console cable for the device, the only cable that I was able to find was this DB-9 cable with male on one end and female on the other end, and I found also a cable which was labeled by the previous engineer for our core switch 8300 & contivity 1700 that has like an LPT and DB9 female connector on both end, I tried to use this but didn’t work on consoling the switch. So in order for me to get it to the SWITCH I did the IP reset where you have to press the UI button for 3secs then 5 times and 3 secs again and it will reset the IP to 192.168.192.168 and I configured the device via web. Now the thing is I was playing around with the areas of the config and im not pretty sure what config I did change and now I can nolonger access the switch via it’s IP 192.168.192.168. Is there a way to perform reset to factory default by using the UI button?? Note: Through console is not an option as I don’t have the console cable…

    Thanks in advance man.

    John

    • Michael McNamara May 17, 2010, 4:30 pm

      Hi John,

      There is no way to factory reset the switch from the UI button. You can find additional information regarding the UI button in this post.

      You’ll need a serial cable to proceed. I believe the switch requires a 9pin male to 9pin female straight-thru cable.

      Good Luck!

  • geoffsmith31 May 17, 2010, 3:55 pm

    John,
    the 5520 switch needs a 9 pin male to 9 pin male straight through cable. You can make one up by using an RJ-45 joiner to connect 2 Cisco console cables together – you probably have some of them as it sounds like you are a Cisco-phile ;) I have done this myself and it works fine.

    Once you have a console connection you can break into the switch boot sequence and reset to factory defaults.

    Good Luck.

  • JohnJ May 18, 2010, 6:06 am

    Geoffsmith31.. dude you’re the man….

    Michael & Geoff, thanks for your help gents,

    very much appreciated,
    John

  • Mike T June 22, 2010, 9:11 pm

    Sir,
    I have a 5510-48port pwr switch that has a password issue. I did a software upgrade to secure software and the password that was on board had caricatures that are not allowed in the new build (6.1.2.0.29) the upgrade went fine but now the RW pass does not work, I can only get in with ro. I would love to not have to reset to factory, is there a way to get rw access again?

    • Michael McNamara June 22, 2010, 10:21 pm

      Hi Mike,

      Assuming that you have SNMP access (read-write) you might try using Java Device Manager to download an ASCII configuration file that has the necessary commands to reset the passwords. I’m not sure if this will work with the secure version of software since I believe it requires an interactive response when setting the passwords.

      Another solution (more likely to succeed) again assuming you have SNMP access (read-write) would be to backup the switch configuration to a TFTP server, perform both the BINARY and ASCII configuration backups. You could examine the ASCII configuration file to see if it sets the passwords – I don’t believe the passwords get set in the ASCII configuration file. You could factory reset the switch and then restore the ASCII configuration file.

      Good Luck!

  • ali July 18, 2010, 2:58 am

    Hi,
    I have a baystack450 Nortel and miss this Password. how to recover this password by console port?

    thanks alot

    • Michael McNamara July 18, 2010, 12:56 pm

      Hi Ali,

      You’ll find the instructions on how to factory reset the switch at the top of this page which will also reset the password to factory.

      Good Luck!

  • Rafi July 21, 2010, 9:49 am

    Hello sir,

    i have Nortel Baystack 5520, recently i have reset it to factory defaults, now i am unable to access it, please can you tell me the ways that i can access its console from web or telnet.

    • Michael McNamara July 21, 2010, 9:06 pm

      Hi Rafi,

      What exactly do you mean by “access it”? Since you said you factory reset the switch I’m assuming you had the console working, do you not see the login banner? If you reboot the switch do you not see the output from the console as the switch is booting?

      Good Luck!

      • Rafi July 22, 2010, 1:15 am

        Thanks for your reply,

        actually i was not able to access its default IP address after resetting (192.168.192.168), so i got confused, then after some research on your blog i got the solution.

        Thanks.

  • Charles Porter August 31, 2010, 2:49 pm

    Hi,
    I have forgotten the password to my ERS 5698. I can’t connect it to the Network and use the Device Manager as it has a duplicate IP of a production switch already on the Net.
    How can I recover/reset the password or set the box back to factory defaults?
    Thanks

    • Michael McNamara August 31, 2010, 4:56 pm

      Hi Charles,

      You can follow the instructions in the post above.

      Good Luck!

  • Charles Porter September 1, 2010, 7:54 am

    Hi Michael,
    Thanks for your response. I tried these instructions already. The problem is that the 5698 does not give me the ‘i’ option (step four). In fact, there are no factory default options listed.

    • Michael McNamara September 1, 2010, 4:47 pm

      I haven’t seen an ERS 5600 switch just yet so I can’t really test it. Could you post a screenshot or just cut and paste a copy of the terminal session (including what options you have)?

      Cheers!

      • Blake Young August 9, 2011, 3:39 pm

        I ran into this today, figured I would post my findings.

        When you break into the boot menu, select option 5, then hit 1, enter, go back in and do the same for 2 and 3. This erases the 3 config files from flash. Use option 9 after this to boot, and the unit comes up in factory default state.

  • Geoff September 12, 2010, 10:01 pm

    Hi Michael. I’ve lost the RW password on a 1624G. It’s been in service with no problems, just need to move it to a new location on the network. Biggest problem is, I can’t get into the switch through the console port, I’m using the same cable I use on all the other Nortel switches with no problem, so not the cable. I just get no response on the ‘hyperterm’ screen The only way I can see anything on the switch is through the management port on DM but only ‘read only’ Hope you can help..

    • Michael McNamara September 12, 2010, 11:50 pm

      Hi Geoff,

      The cable on the ERS 1600 series switch is opposite (null) of the cable used Nortel/Avaya’s other switches (ES460, ES470, ERS4500, ERS5500, etc). If you’ve lost RWA username/password then hopefully you still have the RW SNMP community string because without it you’re going to need to factory reset the switch to recover.

      The one chance you might have is trying to copy the config file from the switch to a TFTP host using the RO username/password. I think that might work.

      Good Luck!

  • Geoff September 13, 2010, 3:47 pm

    Hi Michael. Thank you for the prompt response, yes, I had the wrong cable. I’m quite happy to reset the switch back to Factory defaults, next problem, hitting the ‘return’ key or ‘ctrl C’ on startup doesn’t seem to do anything ?

    • Michael McNamara September 14, 2010, 12:06 am

      You’ll need to troubleshoot the problem. Either your cable is bad, your terminal emulator is mis-configured or the switch is not responding. If you boot the switch do you get anything on the terminal emulator?

      As a side note you realize that the procedure documented above does NOT cover the ERS 1600 series switch. Depending on the software release the switch is running you might be able to follow the process for the ERS 8600 switch.

      http://blog.michaelfmcnamara.com/2007/12/factory-reset-nortel-ethernet-routing-switch/

      Good Luck!

  • Geoff September 14, 2010, 2:06 am

    Yes, sorry you were correct, it did require and null cable, with the correct cable all good and the display does comes up with the diagnostics tests, all OK. I have tried the reset for the 8600 series as you’ve outlined above, but their’s no response using the ‘return’ key or ‘ctrl C’ procedure as the tests starts. Your’ve mention their’s another procedure to ‘factory reset’ the 1600 depending on s/w release.

  • Geoff September 14, 2010, 3:09 pm

    H/W Ver 0A5, S/W Ver 1.2.2.0

    • Michael McNamara September 14, 2010, 3:50 pm

      That’s the older version… I haven’t worked with that switch in years. I don’t know how you’d factory reset that switch. I do remember that there was an option within Java Device Manager under the Edit -> Chassis tab, this assumes that you have RW SNMP access to the switch.

      I would expect that there might be some option to interrupt the boot process and then reset the configuration, but I’ve never done it personally on that switch with that older software.

      Good Luck!

  • Geoff September 14, 2010, 4:04 pm

    No problem, much appreciate the help on the null cable. Great web site. Thanks, Geoff.

  • Talib January 13, 2011, 2:18 am

    Hi,

    i lost the access of Nortel 5520-24t-PWR Routing Swtich,
    i can’t access through web nor to console, can anyone tell me how to Reset the Switch to Factory Default from UI Button in Front of the Switch..

    Thanks
    Talib

  • Nadeem January 27, 2011, 12:03 am

    Hi All,
    Sir, how can i encrypted my 5510 switch Password.

  • DL February 21, 2011, 12:33 pm

    I’m trying to get into the web portal of a Baystack 310-24T. I am able to access the console through the comm port and I was able to set the password, but when I go to log into the web portal I don’t know what “User Name” to enter. Anybody know what that would be?

    • Michael McNamara February 24, 2011, 8:59 pm

      Hi DL,

      I didn’t think that the BayStack 310 had a web interface but if you are being challenged you could try either RO or RW (case sensitive).

      Good Luck!

  • MAx April 11, 2011, 6:21 pm

    Hello,
    i didn’t read every post up. Ive a Business Policy Switch 2000 but i dont know the IP Adress. Also i dont know how to get access with the COM port(i cannot find the software in the web).
    How can i reset the settings or where can i find informations about that switch ?
    Thanks a lot

  • Abe May 16, 2011, 11:22 am

    Hello Michael

    i am new to Nortel switches and i am having problems consoling to the 5520-48T-PWR. I am using a null modem cable, hyperterminal with ocrrect settings, yet with everything connected and i boot the switch i am not seeing anything on my HT screen nor am i able to get to the CLI prompt.

    What am i NOT doing corectly?

    • Michael McNamara May 18, 2011, 9:23 pm

      Hi Abe,

      As Geoff suggests you need a straight-thru cable and not a null modem cable. You should configure your terminal emulator at 9600-8-N-1.

      You can then either reboot the switch or again as Geoff suggest just hit Ctrl-Y on the console to bring up the menu.

      Good Luck!

  • Geoff Smith May 17, 2011, 1:43 am

    Abe,
    You need a straight-through serial cable (not a null modem cable). If you dont have a straight-through cable get two RJ-45 to DB-9 headshells that are the same (cisco, enterasys, HP, whatever – so long as the two are the same) and plug them together with a straight-through CAT-5/6 cable and bingo – straight-through serial cable for a Nortel switch. Once this is connected and you are running HT hit CTRL-Y (X-ON) and you should get the CLI or menu for the switch

  • Eric June 15, 2011, 10:12 am

    I am having issues connecting Nortel Baystack 5510-48T ethernet switches via console cable. I do not have the IP address of the switches so connecting to them that way is not an option. I have read the posts and tried all of the options there but I still cannot get any response from the switch and nothing shows up in the terminal window. I am using hyperterminal with a straight console cable. Any help would be much appreciated.

    • Michael McNamara June 15, 2011, 1:58 pm

      Hi Eric,

      If you’ve reviewed all the comments above then you should have everything you need. If you still can’t make any headway you’ll need to troubleshoot the problem. I would recommend you start by eliminating your serial cable and terminal emulator… do you have another switch you can try or another device? If your serial cable works fine then the switch might be dead.

      Good Luck!

      • Eric June 15, 2011, 2:06 pm

        I got it finally. Used the pinout diagram in the manual to create my own cable and it worked. For some reason the straight cable would not work. Thanks.

  • Abhik June 18, 2011, 3:58 pm

    Hi Michael,

    I am having a problem in 7 nos 2526T switches. All the ports are hung and total network went down after few minutes. Does the ‘Factory Default’ procedure (shown by you at the top of the page) meet the problem.

    Expected your help as you made many customer satisfied

    • Michael McNamara June 19, 2011, 11:21 pm

      Hi Abhik,

      It’s very difficult to provide you any feedback as there aren’t enough details to really draw any conclusions. If you reset the switch does the network return to service? I would probably perform some back troubleshooting to start. Is there link to the desktop/laptop or other edge device? If so does the edge device have an ARP table? (arp -a) If the switch is managed (I believe the 2526 is managed) what does the MAC/FDB table look like on the switch? Is it correct? What if you try and run a packet capture using WireShark?

      I would suggest you post any follow-up in the discussion forums.

      Good Luck!

  • Abhik June 21, 2011, 1:09 pm

    Hi Michael,

    I have reset the switches along with upgraded the Firmware and the Software with latest version. Thouh it it was upgraded but ‘INTERNAL LOOP TEST FAILED’ was showing during the time of POST checking. AVAYA has recomended to raise the RMA in against of the switches.

  • Ammon July 13, 2011, 4:36 pm

    Hey Michael,

    I’ve been working on a Nortel Baystack 450-24T with Firmware at V1.47 and Software at v3.1.0.22. I’m able to view and interacted with the console via a straight through connection to my serial port using putty. From the moment I reboot the switch I am pressing ctrl-Break (the control to send a break signal in putty, I have also tried ctrl-c). No menu appears. Is there a specific terminal program I should use?

    • Michael McNamara July 14, 2011, 9:48 pm

      Hi Ammon,

      The procedure documented in the original post doesn’t work for the BayStack 450 24-T. Apparently though (depending on software version) you might be able to use the following procedure.

      “Power up the switch and when the console port prompts for the password, enter NetICs (this is case sensitive). Don’t bother going to the password page to see what the secret password was, and to change it because this won’t stop a request for the password on the next boot. Instead, in the main menu choose “Reset to Default Settings”. The switch won’t ask you for a password anymore. Reset the switch, if it didn’t already give you the Control-Y screen again (depends on SW version).”

      Good Luck!

  • Afonso July 26, 2011, 9:58 am

    Hi Michael,

    Well, I’d like to know if it is possible to reset a Nortel Switch (2526T) using telnet acess, but i dont remember the RW password, just the RO. Then I’d like to reset it to change the RW password. I tryed to do what you said but it didnt work because i cant connect to the console through Hyper Terminal even using 9600, 8, N, 1. Could you help me?

    • Michael McNamara July 26, 2011, 10:12 am

      You’ll need to physically console up to the switch to factory reset it. You need a straight-thru cable at 9600, 8, N, 1. Power cycle the switch when you are connected to the console and you should see the boot process. If that doesn’t work you need to validate that your serial cable and terminal emulator are working properly.

      Good Luck!

      • Afonso July 26, 2011, 10:37 am

        Hi Michael,
        I did it, but it’s not possible to establish the connection. I’ve tryed more than once. Can i reset it by telnet? Or will i need RW password to do this?

        • Michael McNamara July 27, 2011, 9:30 am

          I would try and determine why you can’t make a serial connection, or try a different device to prove or disprove your setup. You need the serial connection to the console.

          Yes, you can factory reset the switch if you have the RW password but how are you going to reconfigure it without access to the console port?

          Good Luck!

          • Afonso July 27, 2011, 9:41 am

            Hi Michael (again). Finally, i got it. Thanks for all!

  • Charles Milanya August 17, 2011, 1:18 am

    hi am in charege of a network with more than 3000 users i use smnp sofware to monitor the status of the network (watup gold) by ipswitch one of my edge switch Nortel Baystack 5520-48T is indicating to be down yet not i cannot ping it or reach it via any remote connection means,i have restated the switch several times is behaves for at most 30 min the shows to be down again. The smnp is enabled on it just wanted to know wat might be the problem and how to sort is
    thanx
    charles
    Nairobi
    Kenya.

  • Kelly Dean November 12, 2011, 10:04 pm

    I have one of these switches, and I am unable to connect to the console port, with a null modem cable. Any assistance would be greatly appreciated.

    Thanks

    • ac September 11, 2012, 4:46 pm

      I have one of these too, and I am unable to connect to the console port, with a USB to serial (db9) convertor cable. .. do you know why??

      • Michael McNamara September 11, 2012, 10:31 pm

        You need a straight-thru serial cable not a null or cross-over serial cable (Cisco console cable).

        Good Luck!

  • Geoff Smith November 13, 2011, 3:06 am

    Excellent – all working as designed then!!! If you read the posts on this forum you will quickly discover that you need a straight-through serial cable. Also dont forget the Ctrl-Y. (don’t worry, you are not the only one to assume you need a null-modem cable) :)

  • Geoff Smith November 13, 2011, 3:11 am

    Mmmmm. . . . my apoligies, there have been a lot of posts since I was here last. It seems that the info I referrred to is buried pretty deep.

    • Michael McNamara November 13, 2011, 11:50 am

      No apologies needed Geoff!

      I’ll update the original post with the fact that a straight-thru serial cable is needed.

      I appreciate the comments and feedback as always!

      Cheers!

  • Arjun Thaker January 13, 2012, 12:50 am

    Hello Michael,
    I appreciate if you please tell me the username after setting the password in a nortel 4850GTS swtich. I have set the password in the switch but it requires the username when we want to enter the cli..

  • deep March 14, 2012, 6:39 am

    Hello Michael!
    I have stacked two Nortel 5510-24T switches. Now when I try to go to the Command Line Interface through the menu, it gives a message ‘could not create clip’ and the menu simply re-appears. I am really at my wits end trying to enter the CLI. Please help!

    • Michael McNamara March 15, 2012, 9:25 pm

      Hi Deep,

      I would probably recommend you cold boot the switches… sounds like a software bug.

      Cheers!

  • Deep March 18, 2012, 1:12 am

    Hi Michael,

    I think the Telnet/Web Access password got erased – somehow – when I stacked the switches and without a password the switch wasn’t allowing me to enter the CLI. So, I entered CLI through console port (no password set) and set password for Telnet access which solved my problem. But now a new issue has crop up – when I am trying to configure a qos ip-acl I get the following message %cannot modify settings and %unable to install access – component creation issue. The solution given in http://support.avaya.com/css/P8/documents/100134575 doesn’t make any sense. Can you suggest something?

  • Brett Husebye June 12, 2012, 7:24 pm

    The easiest way to change the password on a Nortel or Baystack 450 is find another switch you can get into. Make sure the Firmware and Software on the startup screen is the same as the one with the password on it, if not downgrade it or upgrade it to the same rev levels. Take 2 Cascade modules, install them in the switches being mindful they are NOT to be installed with the power on (non-hot swappable). Make the 450 you can get into without a password the Base by flipping the dipswitch between the Cascade cables on the Cascade Module, make the other dipswitch the opposite of Base. Install the Cascade cables following the up down pattern, crossed. Turn on the Base Switch and wait 10 seconds then turn on the second switch. There should be an led light showing the status of the cascade modules under the Cas, Up, Dwn, Base. Up, Dwn should both be lit on both switches and Base should only be lit on the one you switched to Base. If this is not the case you messed up somewhere or need to check cables, cascade modules for being compatible with the 450 you are on. Not every Module rev or MDA for that matter gets along with each 450 Rev. Anyway once you have the lights lit up, wait 20 seconds for the Cascade Modules to converge after booting the second switch. Then open the menu with console cable on the first switch (9600, 8, N, 1 and no flow control), arrow down to Reset to Default Settings. Hit Enter, toggle the commands with your space bar and there should be a command that says reset entire stack and select yes.

    • Michael McNamara June 21, 2012, 9:30 am

      That’s an option assuming the user has the cascade and stacking cables. On the 450 the cascade modules were not included,

  • tleu July 23, 2012, 1:47 am

    Hi Michael,
    I have one of Nortel 2526T when i tried to run it, it gives me this massage :
    Booting…

    Testing main memory – PASSED

    Starting..

    Ethernet Routing Switch 2526T

    Boot Version 1.0.0.6 Wed Feb 07 11:44:42 2007

    Hardware Rev: 03
    Resets: 127
    Initializing Flash..
    Reading MAC Address..
    MAC Address: 00-23-0d-a9-30-00
    Initializing Switch CBs..
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)
    Init BCM chip 0 fail (.portsrcsw_init.c: 3665)

    Best regards.

  • ankit sharma November 5, 2012, 4:05 am

    anyone is help me to find out the problem of assertion failed in nortel 5510t switch
    plz help

    • Michael McNamara November 8, 2012, 8:48 am

      Hi Ankit,

      What version of software?
      What is the actual error message?
      What is the configuration?

      Good Luck!

  • Leonardo April 10, 2014, 2:31 pm

    Hi all,

    my Nortel 5510 started to show FAIL results on test 211. Ports from 25 to 36 are not working.
    Using the console I can hit “a” and finish the boot and still use the remaining good ports.
    Is there a way to have the switch automatically boot to the agent part without using the console?
    I’ll buy a new hardware but need something until I receive the new unit.

    • Michael McNamara April 22, 2014, 6:30 pm

      Hi Leonardo,

      Unfortunately there’s no way to bypass the POST (Power On Self Test) so you need to hit “a” to acknowledge the hardware failure and launch the agent software.

      Cheers!

Leave a Comment