Forum Discussion

Harry_Arora_240's avatar
Harry_Arora_240
Icon for Nimbostratus rankNimbostratus
Dec 20, 2015

Disabled Root Login by mistake

Have a lab license of BIG IP VE, was doing some R&D , disabled root login by mistake. Done provisioning for some module and update option of IP address range 192.168.1.0/28. did nothing else. After rebooting following thing are happening:- 1. Logged into the admin through GUI but Menu option not showing anything, like no options . just blank.

 

  1. NOt able to login in cli trough root(guess I disabled it).

3 tried ssh, but unsuccessful . IP address of the client is in range but I think SSH passwrod was not set at the configuration time so again not getting inside.

 

I want to get back my menu options so that I could enable the root login. I am able to login via admin but of no use as menu options not there. just blank under menu.

 

application delivery
BIG-IP

1 Reply

Sort By
  • Hannes_Rapp's avatar
    Hannes_Rapp
    Icon for Nimbostratus rankNimbostratus
    Dec 21, 2015

    As understood, you haven't configured the root account. It should still use defaults then, therefore, give a try to steps below.

    Log in via SSH with 

    root/default
    , proceed to restore the config before your last change with 
    cp /config/bigip.conf.bak /config/bigip.conf
    followed by 
    tmsh load sys config
    commands. In the future, if you run into issues, check the /var/log/ltm file. It reports most of the problems very accurately.

    Also note that you cannot actually disable the root account, its part of RHEL, not F5 TMOS config. Regardless of the auth scheme you choose (TACACS, RADIUS), the undeletable account named root always uses on-appliance authentication method. The account is linked to the Linux system underneath F5, and you would have to try hard to make the root account not work 🙂