SRX

Hi guys,

need help on this as i was unable to reset my firewall to factory default either from reset button or command load factory-deafult.

The error was as below:

root@% cli
{hold:node0}
root>

{hold:node0}
root>

{hold:node0}

Broadcast Message from root@
        (no tty) at 20:19 UTC...

Config button pressed
Committing factory default configuration



{hold:node0}
root>

{hold:node0}
root> commit
      ^
unknown command.
root> configure shared
Entering configuration mode
The configuration has been changed but not committed

{hold:node0}[edit]
root# commit and-quit
[edit]
  'system'
    Missing mandatory statement: 'root-authentication'
error: commit failed: (missing statements)

{hold:node0}[edit]
root#

Hope you all can help me on this.

Many thanks in advance.

Hi, after you load the factory-default config ( with the configuration command "load factory-default" you will have to set the system authentication password, otherwise the commit will fail and the config won't be activated. To set the password you can use the configuration command "set system root-authentication plain-text-password", and then type the pwd twice!

With the reset button, you have to hold if for I believe 30 seconds, or until the power light goes amber/red

With the reset button, the SRX will commit the config for you; the 'unknown command' error was because you were in Operational mode rather than Edit mode, so 'commit' isn't a valid option.

Hi all,

so sorry for missing some other information.

{hold:node0}[edit]
root# set system root-authentication ?
Possible completions:
+ apply-groups         Groups from which to inherit configuration data
+ apply-groups-except  Don't inherit configuration data from these groups
  encrypted-password   Encrypted password string
  load-key-file        File (URL) containing one or more ssh keys
  plain-text-password  Prompt for plain text password (autoencrypted)
> ssh-dsa              Secure shell (ssh) DSA public key string
> ssh-rsa              Secure shell (ssh) RSA public key string
{hold:node0}[edit]
root# set system root-authentication plain-text-password
New password:
Retype new password:

{hold:node0}[edit]
root# commit and-quit
[edit interfaces]
  'ge-0/0/0'
     HA management port cannot be configured
error: configuration check-out failed

{hold:node0}[edit]
root#

i had add in the root password, but it don't allow me to commit to reset to factory default.

 I had also attach the configuration file for my juniper.

Attachment(s)

juniper configuration.txt   6 KB 1 version

Hi,

Just to know, are you trying to take device out of HA with factory or want to continue in HA? To continue in HA try by deleting few config:

1. In srx240, ge-0/0/0 is dedicated as mgt port hence you cannot have config on it. Also, ethernet-switching is not supported in 10.4 HA so, better delete interfaces config:

#delete interfaces

#delete vlans

#delete security zones security-zone trust interfaces vlan.0

#delete security zones security-zone untrust interfaces ge-0/0/0.0

#commit

2. Add any HA related config (fab, node)

Thanks,

Vinay

Hi,

I just want to reset both the box to factory default. Which mean i don't want any current configuration.

i can't really remember, but i think i've been there before.

try to disable chassis cluster in command mode:

root> set chassis cluster disable

then reboot

or 

root> set chassis cluster cluster-id 0 node 0 reboot (id=0 will also disable clustering)

then try to set configuration to factory default. you'll find the methods for this here:

http://kb.juniper.net/InfoCenter/index?page=content&id=KB15725

greets chris

Hi CY,

Thanks for the solution. It work.