First we’ll need to ssh into the device
ssh ubnt@192.168.1.20
Next lets open up the config file
vi /tmp/system.cfg
Now search for vlan and replace the vlan id with the appropriate number
In VI you can search by hitting / and then type in vlan
After you have changed all the vlan ids, save the file with esc, wq, enter.
Now we can save the config with
cfgmtd -f /tmp/system.cfg -w && reboot
You will need a hash of the password to put into the database. We don’t cover that in this post. You could copy the password from a different user account or use a different UniFi instance to change the password and then check the DB to find the hash.
ssh unifiadmin@unifiserver
Connect to Mongo by typing in the following.
mongo -port 27117
Then select the ace database by typing
use ace
The admins are in the admin collection/table. Use the following command to list all the users and their name, email, and password hash.
db.admin.find({ }, { name:"" , email : "", "x_shadow" : "" })
The following looks complex. Fortunately though you should be able to copy and paste. You should only need to change the
– ObjectId to your User Id
– Password Hash to your password hash
db.admin.update({"_id" : ObjectId("223abc5489de0a93be758493")}, {$set: { "x_shadow" : "$6$nwpi7.q2$OuD9/UZGZt5cD739Dt7j8Gb1uPtfU99p0DeDSurSNBZVizieUrFVFbRufiZMgOk2IaaDZN9BVmL9yUwQ2mC8f."}});
Note: The hash above is password. Not recommended for use.
You should receive a confirmation that it succeeded. Test the new password by logging into the UniFi Controller.
For more MongoDB commands, check out this post.
Sometimes it is nice to have a list of just the IP addresses and the hostname or mac address. Can be especially helpful when you are trying to get a list of devices to do a bulk update in LibreNMS. Helpful LibreNMS links for renaming and showing down devices
we are going to run the command to pull the DHCP information and then use Unix utilities to parse the data out.
Replace dhcp8 with the correct dhcp server in the mikrotik.
First, SSH into your Mikrotik router.
ssh user@mikrotik
Next we’ll want to go to the ip dhcp-server lease directory
/ip dhcp-server lease
Now we can run the following command to loop through and pull out all the info we need.
You can change the info like “mac-address” for something like “status”. You can use Tab to see what options are available. Just delete mac-address and hit tab twice.
:foreach i in=[find] do={ :put ([get $i address].",".[get $i mac-address].",".[get $i server].",".[get $i host-name ])}
Found the above helpful info from the following pdf file.
https://mum.mikrotik.com/presentations/PH18/presentation_5113_1516612695.pdf
For some reason I ran into an issue where I can not remove authorized SSH Keys in AirOS version 6.3. It redirects to a 404 page and then to the main page.
Thankfully, we can still remove the authorized keys from the command line. For more information on making changes over SSH, refer to the following post.
SSH into radio. Replace username and IP address with your radios user and IP.
ssh ubnt@192.168.1.20
Open up config file
vi /tmp/system.cfg
Search for the lines that contain
the sshd.auth.key and remove them
Save the file and write the configuration with
/usr/etc/rc.d/rc.softrestart save
Once the command completes, you should be good to go.
SSH into LibreNMS server
ssh user@librenms-server
cd into the LibreNMS directory
cd /opt/librenms
Rename host
sudo ./renamehost.php old-hostname new-hostname
Example:
Note you can use IP addresses if the device is using that as the host name
sudo ./renamehost.php 192.168.1.209 192.168.2
You may want to check out these posts
SSH into the UniFi. Note that the UniFi username and password get updated from the controller. Refer to here to find username and password.
ssh ubnt@192.168.1.20
run the syswrapper.sh script with the restore-default option
syswrapper.sh restore-default
Once the device is reset, log in over ssh and reconfigure.
Note that the username and password will now be ubnt/ubnt
Helpful commands. Maybe?
Looks like most of the configuration scripts are in /sbin
Web from the /etc_ro/web/admin/managment.php
<fieldset> <legend><script type="text/javascript">Capture(management.Web_Access)</script></legend> <table class="setting_block"> <tr> <td class="head" id="remoteWebLogin"><script>Capture(management.Remote_Web_Login)</script></td> <td> <select name="remote_web_login"> <option value="0" <% getCfgSelected("DBID_LAN_LOGIN_ONLY", "1"); %>><script>Capture(share.disable)</script></option> <option value="1" <% getCfgSelected("DBID_LAN_LOGIN_ONLY", "0"); %>><script>Capture(share.enable)</script></option> </select> </td> </tr> <tr id="WirelessHostLogin_tr"> <td class="head" id="WirelessHostLogin"><script>Capture(management.wireless_access_web)</script></td> <td> <select name="wireless_access_web"> <option value="0" <% getCfgSelected("wireless_access_web", "0"); %>><script>Capture(share.disable)</script></option> <option value="1" <% getCfgSelected("wireless_access_web", "1"); %>><script>Capture(share.enable)</script></option> </select> </td> </tr> <tr id="web_login_access"> <td class="head" id="WebLoginWay"><script>Capture(management.way_access_web)</script></td> <td> <select name="way_access_web"> <!-- <option value="https" selected = "selected" <% getCfgSelected("way_access_web", "https"); %>><script>Capture(management.https)</script></option> --> <option value="http" <% getCfgSelected("way_access_web", "http"); %>><script>Capture(management.http)</script></option> <option value="http&https" <% gethttphttpsSelected("way_access_web", "http&https"); %>><script>Capture(management.http_https)</script></option> </select> </td> </tr> <tr id="localport_tr"> <td class="head"><script>Capture(management.localWeb_Port)</script></td>
nvram_
nvram_get nvram_set
nvram_get
Usage:
nvram_get [] []
command:
rt2860_nvram_show - display rt2860 values in nvram
rtdev_nvram_show - display 2nd ralink device values in nvram
show - display values in nvram for
gen - generate config file from nvram for
renew - replace nvram values for with
clear - clear all entries in nvram for
platform:
2860 - rt2860
rtdev - 2nd ralink device
file:
- file name for renew command
nvram_get show
2860
nvram_get show 2860
Trying to read data
nvram_get gen file tmp.txt
Usage:
nvram_get 2860 lan_ipaddr
nvram_get 2860 lan_ipaddr
192.168.11.1
nvram_get 2860 http_wanport
nvram_get 2860 http
nvram_get 2860 httpd
nvram_get 2860 remote_mgt_https
nvram_get 2860 remote_mgt
nvram_get 2860 telnet
nvram_get 2860 remote_mgt
nvram_get 2860 remote_ip
nvram_get 2860 wan_ip
grep “nvram_get 2860” * | grep -i web
grep "nvram_get 2860" * | grep -i web check_goahead.sh:DBID_WEB_PORT=nvram_get 2860 DBID_WEB_PORTcommon_lib.sh: local webport=nvram_get 2860 DBID_WEB_PORTcommon_lib.sh: local webhttpsport=nvram_get 2860 DBID_WEB_SSL_PORTcommon_lib.sh: local web_remote_ip=nvram_get 2860 WebRemoteLegalIPcommon_lib.sh: wireless_access_web=nvram_get 2860 wireless_access_webcommon_lib.sh: wanwebport=nvram_get 2860 DBID_WEB_PORTcommon_lib.sh: local webhttpsport=nvram_get 2860 DBID_WEB_SSL_PORTcommon_lib.sh: lanwebport=nvram_get 2860 lan_webportcommon_lib.sh: local webport=nvram_get 2860 DBID_WEB_PORTcommon_lib.sh: local webhttpsport=nvram_get 2860 DBID_WEB_SSL_PORTcommon_lib.sh: local web_remote_ip=nvram_get 2860 WebRemoteLegalIPcommon_lib.sh: local teluserpwd=nvram_get 2860 DBID_SUPER_WEB_PASSWORDglobal.sh:webinit=nvram_get 2860 WebInitinternet.sh: pass=nvram_get 2860 DBID_SUPER_WEB_PASSWORDlan.sh:lan_gw=nvram_get 2860 lan_gateway#for debug, so remote host can access web route from another device in lan port nat.sh:webport=nvram_get 2860 DBID_WEB_PORTset_ping_rule.sh: local pinglegaip=nvram_get 2860 WebAclListstorage.sh: admPW=nvram_get 2860 DBID_SUPER_WEB_PASSWORDstorage.sh: admPW=nvram_get 2860 DBID_SUPER_WEB_PASSWORDstorage.sh: admPW=nvram_get 2860 DBID_NORMAL_WEB_PASSWORDstorage.sh: admPW=nvram_get 2860 DBID_SUPER_WEB_PASSWORDstorage.sh: admPW=nvram_get 2860 DBID_NORMAL_WEB_PASSWORDupdown_make.sh: url=nvram_get 2860 websURLFiltersupdown_make.sh: host=nvram_get 2860 websHostFilters
SSH
Not exactly sure if this does work, but seems like it should.
nvram_get SSH_SERVER_REMOTE_ENABLE
Default status
Enable
nvram_set SSH_SERVER_REMOTE_ENABLE 1
After running above command
Commit changes
nvram_get commit
Reboot
reboot
Seems like I am missing a step. Seems to change the password in the nvram, but does not actually change it permanently
Get current password
nvram_get 2860 Password admin
nvram_set Password newpassword
Commit Changes and reboot
nvram_set commit reboot
https://forum.dd-wrt.com/phpBB2/viewtopic.php?t=29181
Uses some of the commands (i.e. nvram_get 2860 HostName )
https://github.com/jameshilliard/hlk-rm04-squashfs-root-1.78/blob/master/sbin/lan.sh
Edit the “/tmp/system.cfg”
Change the line that contains “dhcpc.status=disabled” to
dhcpc.status=enabled
add the following lines
dhcpc.1.devname=br0 dhcpc.1.fallback=192.168.1.20 dhcpc.1.fallback_netmask=255.255.255.0 dhcpc.1.status=enabled
Save and exit and save changes
/usr/etc/rc.d/rc.softrestart save
Log into the GUI and verify everything looks correct. Under the network tab it was still showing that it had a static address, although it pulled a DHCP IP.
List current sessions with
loginctl list-sessionsUnlock with session number from above command.
loginctl unlock-session session-numberOr to unlock all sessions do
loginctl list-sessionsMore info:
https://askubuntu.com/questions/341014/unlock-login-screen-using-command-line
Gain access to radio via ssh
ssh ubnt@192.168.1.20
open up the /tmp/system.cfg
vi /tmp/system.cfg
Delete the following line. To move the cursor to the following line and type “dd” and vi will delete the whole line.
dhcpc.status=disabled
Add the following 5 lines. Hit “i” to enter vi insert mode.
br0 should be correct interface in most scenarios.
dhcpc.1.devname=br0
dhcpc.1.fallback=192.168.1.20
dhcpc.1.fallback_netmask=255.255.255.0
dhcpc.1.status=enabled
dhcpc.status=enabled
Save the file by hitting esc and then “:wq” followed by Return/Enter
Save the config changes and reboot the radio so it pulls an address.
/usr/etc/rc.d/rc.softrestart save && reboot