Reset the ESA/SMA/WSA to the Factory Default Configuration

Similar documents
System Administration

System Administration

Release Notes for Cisco IronPort AsyncOS 7.7 for Security Management

ESA Cluster Requirements and Setup

Comprehensive Spam Quarantine Setup Guide on Security Appliance (ESA) and Security Management Appliance (SMA)

Release Notes for Cisco IronPort AsyncOS for Security Management AR

Release Notes for Cisco IronPort AsyncOS 7.8 for Security Management

FTP, SSH, and SCP Access

Best Practices: Enabling AMP on Content Security Products (ESA/WSA) March 2017 Version 2.3. Bill Yazji

Centralizing Services on a Cisco Content (M-Series) Security Management Appliance

Post-Installation and Maintenance Tasks

User Guide for AsyncOS 11.0 for Cisco Content Security Management Appliances

Release Notes for Cisco IronPort AsyncOS for

SPECIAL INSTRUCTIONS AND CAUTIONS ================================================

Upgrading Software and Firmware

Enabling AMP on Content Security Products (ESA/WSA) November 2016 Version 2.0. Bill Yazji

Upgrading the Server Software

IceWarp to IceWarp Migration Guide

Cisco Branch Routers Series Network Analysis Module (NME-NAM-120S) Installation and Configuration Note, 4.2

Spam Quarantine. Overview of the Spam Quarantine. This chapter contains the following sections:

Deploying Cisco UCS Central

Configuring Administrative Operations

Server Utilities. Enabling Or Disabling Smart Access USB. This chapter includes the following sections:

Configure WSA to Upload Log Files to CTA System

WLM1200-RMTS User s Guide

RAID Battery Replacement for Supported Cisco Security Appliances

Best Practices for Centralized Policy, Virus and Outbreak Quarantines Setup and Migration from ESA to SMA

Tracking Messages

In the following table, asterisks (*) indicate the factory default setting. First level Second level Third level Fourth level Values

Maintaining Your WAAS System

Overview of the Cisco NCS Command-Line Interface

Cisco Expressway Cluster Creation and Maintenance

Configuring Administrative Operations

Configure WSA to Upload Log Files to CTA System

IronPort AsyncOS 6.4. RELEASE NOTES for IronPort Security Appliances

Maintaining the System Software

Tracking Messages. Message Tracking Overview. Enabling Message Tracking. This chapter contains the following sections:

Release Notes for Cisco IronPort AsyncOS for

Installing or Upgrading the Cisco Nexus Data Broker Software in Centralized Mode

Release Notes: J-Web Application Package Release 15.1A4 for Juniper Networks EX Series Ethernet Switches

Cisco TelePresence VCS Cluster Creation and Maintenance

Cisco Asa 5505 Reset Factory Default Command Line

User and System Administration

Spam Quarantine. Overview of the Spam Quarantine. Local Versus External Spam Quarantine

Integrate Cisco IronPort Security Appliance (ESA)

Reimage Procedures. Firepower 2100 Series Software Reimage and Disaster Recovery

The instruction in this document is applicable on Cisco FireSIGHT Management Center FS2000 and FS4000 models.

GSS Administration and Troubleshooting

CRES: Account Provisioning for Virtual, Hosted, and Hardware ESA Configuration Example

Getting Started. Access the Console for the Command-Line Interface. Access the Appliance Console

PASS4TEST. IT Certification Guaranteed, The Easy Way! We offer free update service for one year

Performing Maintenance Operations

Upgrade Guide. BCM Business Communications Manager

Lab Configure Basic AP security through GUI

The following topics describe how to use backup and restore features in the Firepower System:

SOURCEFIRE 3D SYSTEM RELEASE NOTES

Integrating With LDAP

Upgrading the Fiery CS IC-310 to system software version 2.0

Performing Software Maintenance Upgrades

Server Edition. V8 Peregrine User Manual. for Linux and Unix operating systems

BackupVault Desktop & Laptop Edition. USER MANUAL For Microsoft Windows

Configuring Host Router and Cisco Analog Video Gateway Module Interfaces

Desktop & Laptop Edition

Troubleshooting Cisco APIC-EM Single and Multi-Host

Installing or Upgrading ANM Virtual Appliance

ESFE Cisco Security Field Engineer Specialist

Installing and Upgrading Cisco Network Registrar Virtual Appliance

Release Notes: J-Web Application Package Release 17.4A1 for EX4300 and EX4600 Switches

Getting Started. Getting Started with Your Platform Model. Factory Default Configurations CHAPTER

SonicWall Security 9.0.6

Chapter 14: Advanced Troubleshooting

Product Family: Networking Hardware Number: AN-NH-012

Managing Graymail. Overview of Graymail. Graymail Management Solution in Security Appliance

Cluster creation and maintenance

Firepower Management Center High Availability

Configuring the Cisco NAM 2220 Appliance

Testing and Restoring the Nasuni Filer in a Disaster Recovery Scenario

Configuring the SMA 500v Virtual Appliance

Recovery Procedure for Cisco Digital Media Manager 5.2

Intel Entry Storage System SS4000-E

Table of Contents. Cisco Password Recovery Procedure for the Cisco Aironet Equipment

Test Lab Introduction to the Test Lab Linux Cluster Environment

Installing Cisco StadiumVision Director Software from a DVD

Setting Up the Sensor

Test-king q

Dell SonicWALL SonicOS 6.2

Web Self Service Administrator Guide. Version 1.1.2

Administration of Cisco WLC

MiPDF.COM. 3. Which procedure is used to access a Cisco 2960 switch when performing an initial configuration in a secure environment?

WASABI SYSTEMS INC. Wasabi Storage Builder for NAS Quick Start Guide

CCNA 1 Chapter 2 v5.0 Exam Answers %

Backup and Restore Introduction

Step 3 - How to Configure Basic System Settings

Server Edition USER MANUAL. For Mac OS X

Anti-Virus. Anti-Virus Scanning Overview. This chapter contains the following sections:

Spam Quarantine. Overview of the Spam Quarantine. Local Versus External Spam Quarantine. This chapter contains the following sections:

Using the Offline Diagnostic Monitor Menu

Installation of Cisco Business Edition 6000H/M

Comprehensive Setup Guide for TLS on ESA

Vendor: Cisco. Exam Code: Exam Name: ESFE Cisco Security Field Engineer Specialist. Version: Demo

Transcription:

Reset the ESA/SMA/WSA to the Factory Default Configuration Contents Introduction Reset the ESA/SMA/WSA to the Factory Default Configuration ESA/SMA WSA Related Information Introduction This document describes how to reset a Cisco Email Security Appliance (ESA), Cisco Security Management Appliance (SMA), or Cisco Web Security Appliance (WSA) to the factory default configuration. Reset the ESA/SMA/WSA to the Factory Default Configuration At times, a customer might request to have an appliance reset back to the factory default configuration. Usually, this is requested after an appliance evaluation is complete, or a customer returns a replaced appliance for Return Material Authorization (RMA) or upgrade reasons. Thus, the need to reset the appliance back to the factory default configuration might be requested in order to remove any customer information. Caution: The commands that are described in this document return all of the network settings to the factory defaults, which potentially disconnects you from the CLI, disables services that you used in order to connect to the appliance (such as File Transfer Protocol (FTP), Telnet, Secure Shell (SSH), HTTP, and HTTPS), and even removes the additional user accounts that you created with the userconfig command. Do not use these commands if you are not able to reconnect to the CLI via the Serial interface or the default settings on the Management port through the default Admin user account. The use of these commands also removes all of the available versions of AsyncOS that might still be accessible via the revert command. The only version of AsyncOS that remains is the revision that currently runs. IMPORTANT: The revert command wipes everything from the appliance: The ESA's REVERT command reverts the appliance to a previous version of AsyncOS. WARNING: It is extremely destructive to revert the appliance. This data is destroyed in the process: - all configuration settings (includes listeners) - all log files - all databases (includes messages in Virus Outbreak and Policy quarantines) - all reporting data (includes saved scheduled reports)

- all message tracking data - all IronPort Spam Quarantine message and end-user safelist/blocklist data Only the network settings are preserved. Before you run this command, be sure you have: - saved the configuration file of this appliance (with passwords unmasked) - exported the IronPort Spam Quarantine safelist/blocklist database to another machine (if applicable) - waited for the mail queue to empty If you revert the device, an immediate reboot takes place. After a reboot, the appliance reinitializes itself and reboots again to the desired version. Caution: WSA Revert Command This command reverts the appliance to a previous version of AsyncOS. WARNING: It is extremely destructive to revert the appliance. This data is destroyed in the process and should be backed up: - current system configuration file - all log files - all reporting data (includes saved scheduled and archived reports) - any custom end user notification pages This command tries to preserve the current network settings. If you revert the device, an immediate reboot takes place. After a reboot, the appliance reinitializes itself and reboots again to the desired version, with the earlier system configuration. Tip: Before you continue, Cisco recommends that you run the saveconfig or mailconfig command in order to retain a copy of the current appliance configuration, if needed. The appliance configuration is removed upon a successful reset and cannot be recovered. ESA/SMA Complete these steps in order to return a Cisco ESA or SMA to the original factory default configuration: Note: Cisco recommends that you have console access to the appliance before you run the systemsetup command in order to remove any network configuration. 1. Enter the diagnostic command on the ESA or SMA, and then choose the RELOAD operation. 2. Enter Y when prompted whether you would like to continue, and then enter Y again in order to complete the process.

This process resets the appliance configuration, and all of the customer data (such as the configuration, logs, reporting, and user information) is removed. At this time, the admin password is reverted to the default ironport: myesa.local> diagnostic Choose the operation you want to perform: - RAID - Disk Verify Utility. - DISK_USAGE - Check Disk Usage. - NETWORK - Network Utilities. - REPORTING - Reporting Utilities. - TRACKING - Tracking Utilities. - RELOAD - Reset configuration to the initial manufacturer values. []> RELOAD This command will remove all user settings and reset the entire device. If this is a Virtual Appliance, all feature keys will be removed, and the license must be reapplied. Are you sure you want to continue? [N]> y Are you *really* sure you want to continue? [N]> y Reverting to "testing" preconfigure install mode. The appliance closes the current connection at this time and reboots. 3. In order to remove the network configuration, you must run the system setup wizard once again with the systemsetup command. Move through the wizard, and enter generic information as needed (such as 192.168.42.42 for the management IP address, a generic hostname, and a generic admin@example.com for the email address). 4. At the completion of the setup wizard, enter Y when prompted in order to commit the changes: ***** Would you like to commit these changes at this time? [Y]> Y Congratulations! System setup is complete. At this point, your appliance is cleared of the configuration values that were previously set, and the customer data should be removed from the appliance. When the configuration is reset back to the initial manufacturer values, the feature keys are removed and set back to the 30-day demo key for Incoming Mail Handling. The ESA hardware appliance feature keys are tied directly to an appliance serial number. If the appliance communicates to the update service, it recalls any valid feature keys assigned. For the ESA virtual appliances, the feature keys are removed, as these are tied to the Virtual License Number (VLN) that is embedded in the configuration itself. The virtual appliances require that the loadlicense option be run again, and that the VLN be reloaded. Note: If this process must be completed for a demo appliance, and more time is required, you must contact Cisco Global Licensing Operations (GLO) in order to request an extension or new feature keys.

WSA Complete these steps in order to return a Cisco WSA to the original factory default configuration: Note: Cisco recommends that you have console access to the appliance before you run the resetconfig or reload command in order to remove any network configuration. 1. From the appliance CLI, enter the diagnostic command and choose REPORTING > DELETEDB. 2. Enter the resetconfig command into the CLI. This process performs a complete reinstall of the configuration, which means that all of the settings are lost. The management IP is reset back to 192.168.42.42, and the admin password reverts to the default ironport: 3. mywsa.local> resetconfig Are you sure you want to reset all configuration values? [N]> y All settings have been restored to the factory defaults. Please run System Setup Wizard at http://192.168.42.42:8080 An advanced command can also be entered on the ESA. Enter the hidden reload command into the ESA CLI, enter Y, and then enter YES in order to complete. This command deletes all of the customer data (such as all of the configuration and network settings, logs, archived scheduled reports, and users information): mywsa.local> reload WARNING!! This command will erase customer data, reporting and log files, erase proxy cache, reset to factory configuration (shipping mode), including network settings and IP addresses and reboot the machine. This command does NOT extend the feature keys. Those must be applied separately. If this is a Virtual Appliance, all feature keys will be removed, and the license must be reapplied. WARNING!! This command is primarily intended for Cisco IronPort Field Engineers and may delete valuable data. Administrators should normally use 'resetconfig' instead. Are you sure you want to continue? [y n] y Are you *really* sure you want to continue? If so, type 'YES': yes Related Information Cisco Email Security Appliance - End-User Guides

Cisco Security Management Appliance - End-User Guides Cisco Web Security Appliance - End-User Guides Technical Support & Documentation - Cisco Systems

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback