CUCM, Cisco Unity Connection, UCCX Root Access

CUC CUCM UCCX

Get Root Access to your Cisco Unified Communications Manager (CUCM), Cisco Unity Connection (CUC) or UCCX.

There are many advantages of having root access to the system but there are some dis-advantages also unless you know what you are doing with your root access. Root access can help you to gain access to the system files where you can fix issue if you know what files you need to modify. 

For example : If you are facing an issue with dbreplication and you have tried resetting up the replication by issuing the commands but the replication did not come up. You realized that you may have to take a look and into the hosts/sqlhosts/rhosts files but to do that, you will need root access for which you need to involve Cisco TAC which could be very time consuming. 

In similar situations, root access is beneficial but however Cisco does not give root access to users/administrators as they can manipulate the system files and it would be difficult for Cisco TAC team to troubleshoot issues when they are involved. 

Note: UC Collabing does not recommend to try and apply it on your production server and will not be held for any damages that could occur in your system. In case you perform this on your production servers, you may void Cisco contract. This is only for lab and learning purpose!

To start with the rooting process, you need to have the following file downloaded into your system.

  1. Cent OS – Download CentOS from the link (https://www.centos.org/download/). Minimal ISO will also work.
  2. CUCM or CUC or UCCX installed already.
  3. Access to your ESXi / VMware workstation.

Let’s get started – In our example, we are using VMWare Workstation.

  1. Make sure that your Virtual Machine is powered off
  2. Right Click on your Virtual Machine and Click on Settings
  3. Click on CD/DVD(IDE)
  4. Radio Check Use ISO image file and click on Browse

    uccollabing.com

  5. Select the CentOS ISO file which you have downloaded
  6. Click on Open and Click on OK
  7. Right Click the Virtual Machine and Navigate to Power > Click on Power on to BIOS

  8. You will be redirected to BIOS Setup Utility Screen

    uccollabing.com

  9. Navigate to Boot Menu and Change the order as follows: To change the order you need to use + or keys on your keyboard

    Removable Devices
    CD-ROM Drive
    Hard Drive
    Network Boot from Intel E1000

    uccollabing.com

    Once the order is change, press ESC button and hit Exit Saving Changes

    uccollabing.com

    Your system will not boot using the CentOS ISO

  10. You will be prompted with CentOS Boot Screen Menu.

    uccollabing.com
    Select Rescue Installed System and hit Enter

  11. Choose a language

    uccollabing.com

  12. Choose keyboard type

    uccollabing.com

  13. Setup Networking – Choose No

    uccollabing.com

  14. Rescue Mode – Continue – Click on Continue and hit Enter

    uccollabing.com

  15. Click on OK

    uccollabing.com

  16. Your system is mounted under /mnt/sysimage directory. Click on OK

    uccollabing.com

  17. Select Shell   Start Shell and hit enter

    uccollabing.com

  18. Enter commands as follows:

    chroot /mnt/sysimage/

    (The chroot command changes its current and root directories to the provided directory and then run command)

    rm /etc/securetty

    (The rm (i.e., remove) command is used to delete files and directories.)


    passwd root
    New Password:         (Enter your New UNIX Password)
    Retype new password:        (Re-Enter your UNIX Password)

    (The passwd command is used to change the password of a user account)

    uccollabing.com

  19. Enter the following command in order to assign a shell to the root user::

    vim /etc/passwd

    (Vim is an editor to create or edit a text file)

    a

    (Press “a” key in your keyboard to append text)

    “root:x:0:0:root:/root:/sbin/nologin”
                  REPLACE WITH
    “root:x:0:0:root:/root:/bin/bash” 

    ESC
    (Press ESC button once replace is done)

    :wq

    (Press :wq keys to quit vim, writing out modified file to file named in original invocation)

    Original File:
    uccollabing.com
    Modified File
    uccollabing.com

  20. Enter the following command in order to allow root login via SSH:

    vim /etc/ssh/sshd_config

    (Use VIM editor to edit the sshd_config file)

    PermitRootLogin yes

    (Press “a” key to append and enter the line anywhere in the file)

    ESC
    :wq!

    (Press ESC and type :wq! in order to write the protected file and quit)

    Original File
    uccollabing.com
    Modified File
    uccollabing.com

  21. Enter the following command in order to set the Selinux from enforcing to permissive:

vim /etc/selinux/config

(Use VIM editor to edit the config file)

“SELINUX=enforcing”
REPLACE WITH 
“SELINUX=permissive

(Replace “enforcing” with “permissive”)

ESC
:wq

(Press ESC and :wq to write and quit)

Original File
uccollabing.com
Modified File
uccollabing.com

 

That’s all, reboot the Virtual Machine.
Once the UC application is up, you should be able to login using the root account and the password you have set.

Hope this helps!

CUCM, Cisco Unity Connection, UCCX Root Access was last modified: June 25th, 2018 by Administrator
(Visited 94 times, 1 visits today)

Leave a Reply