Forgotten Password with a Locked Console
If the console is password protected, all is not lost. It takes two reboots to accomplish, but the password can be reset with physical access to the console:
-
Connect to the console
-
Reboot the firewall
-
Choose the Boot Single User option
(2)
from the loader menu with the ASCII logo -
Press Enter when prompted to start
/bin/sh
-
Remount all partitions as rewritable:
- The specific commands vary based on the filesystem.
- For devices installed using UFS, see Re-mount UFS Volumes as Read/Write.
- For devices installed using ZFS, see Re-mount ZFS Volumes as Read/Write.
-
Run the built-in password reset command:
/etc/rc.initial.password
-
Follow the prompts to reset the password
-
Run
/sbin/reboot
to reboot.
When the firewall reboots, login with the Default Username and Password.
Ref: pfsense docs