Hard reset didn't clear password

RouterOS General
1

This was a new one for me.

RB4011 from Amazon.
Had a NEW sticker on the box.

Hooked up unit and opened winbox.
User : admin
Password :

“Wrong Password”

Huh?

Winbox tells me that the router has RouterOS 7.6 on it.

Ok, someone must have returned this thing. They probably logged in and were forced to set a password. No problem… Let’s hard reset the unit with the button.

After several attempts… I keep getting “Wrong Password”

Screw it. netinstall time

Get all the way down to netinstall. See the formatting. And unit finally takes the file and the reboot button appears. Hit reboot and wait.

Unit comes back up… But at 0.0.0.0.

That’s odd. Connect with winbox. Navigate to system and and select reset.

This should make the unit come up as a router, with no password.

Unit reboots and shows up at 192.168.88.1

Using winbox I hit connect… “Wrong Password”

What the…

Try a browser… Wrong Password.

When I get the unit back to the shop… Will try net install again. Then go digging I to files to see if something is “hiding out in there.”

But this was a first.

2

Are you sure the password is not on the sticker ?

I’ve seen some other reports of users having to revert to support to get the new random password because it was not on the sticker.
Already tried that ?

Reference: http://forum.mikrotik.com/t/login-with-default-admin-and-no-password-is-failing/163046/15

3

Hmmmm something to put in the custom-script, to revert this default script password setting? Set it to your own password ???
How to set that custom-script? Or must a custom (edited) default configuration be used with Netinstall?
What defines “$defconfPassword” ???

“You can run the command /system default-configuration print to see exact applied default configuration commands.”

 	.
 		.
 		.
 	           :if (!($defconfPassword = "" || $defconfPassword = nil)) do={
                       /user set admin password=$defconfPassword
                       :delay 0.5
                       /user expire-password admin 
                     }
                    }
                    #-------------------------------------------------------------------------------
                    # Revert configuration.
                    # these commands are executed if user requests to remove default configuration
                    #-------------------------------------------------------------------------------
                    :if ($action = "revert") do={
                    /user set admin password=""
                    .
                    .
                    .
                    custom-script:
4

The $defconfPassword is readed from factory flash zone.
IF is not null or empty is used as default password for admin, if you lost the sticker or is unreadable after some months on the sun…

5

How to load that custom-script? With Netinstall ?? Like to add my own power-user as “deploying/supporting” person.

6

So the field tech didn’t check the sticker.

I have yet to open a box and be greeted by something newer than 7.0??? That was on a 5009.

Since I am still using a stock of units that ship with NO PASSWORD.

I was not aware that boards now ship with a password on them.

Thanks guys.

7

It was introduced in 7. but couldn’t find it back right away in the release notes.
I do remember it was regarding compliance to EU rules stating vendors should not use a default password anymore.

And is pretty default :laughing:

8

No, is not related to 7.x version, but if the hardware have embedded the password: on production time.

9

Yes, with netinstall

10

Are all these predefined variables documented anywhere? How to list all their names and values (to copy-paste into a file, to have a backup when the sticker is lost)? Can I use them in my own scripts, or are they only accessible in the default config script?