NETGEAR is aware of a growing number of phone and online scams. To learn how to stay safe click here.
Forum Discussion
NAS Login Password is reverting to previous password after being changed
Dear Netgear Community, We are experiencing an issue with our Netgear NAS, where our Login (administrator) Password is reverting to the old password unexpectedly after having been changed. Our d...
To be frank, don't expect a lot of help until you update to a more recent version of the OS. You are way out of date, and numerous fixes and enhancements have been implemented since the 2016 release of that firmware version. I recommend you move to the current Long Term Support version, 6.9.6, then decide if anything in 6.10.x is something you need or want.
Thank you for your response. Understood. My IT department would like to upgrade the FW, but our customer's policy is not to.
Do you happen to know of any password issues that any of the past firmware updates have addressed?
Thanks
chris_modica wrote:
Do you happen to know of any password issues that any of the past firmware updates have addressed?
I'm not seeing any linked to AD, though there are several AD bugs that have been addressed:
- 6.5.2 Fixed a bug in the Kerberos library that could cause Active Directory connections to hang.
- 6.6.0 Fixed an issue where ADS groups would show a GID instead of the group name in the GUI on new shares.
- 6.6.0 Adjusted the ADS realm name restrictions to allow number based labels.
- 6.7.1 ADS environment performance.
- 6.8.0 GUI performance issues in ADS mode with trusted domains when using share-level ACLs.
- 6.9.0 Home directory creation in ADS mode will now be skipped for machine accounts.
- 6.9.1 Fixed an issue where anonymous connections to guest-enabled shares may fail in ADS mode.
- 6.9.1 Fixed an issue where ADS authentication may fail to work during the first boot after updating to 6.9.0.
- 6.9.1 Fixed a GUI offline issue after joining ADS where the domain contained a group named "users".
The list of bugs in the release notes is not complete though.
chris_modica wrote:
but our customer's policy is not to.
If they care about network security, you could search the release notes and get a list of CVEs and other security updates to them fairly quickly (perhaps using "readynas OS 6 software version" CVE site:kb.netgear.com as a search string). That might motivate them to reconsider their policy.
chris_modica wrote:
When we tried to login again to the NAS Administrator page though, we found that the recently changed password did not work, and it was only possible to login with the old login password. It seems as though the new login password was rewritten to the previous password.
Did you try resetting the local admin password in the NAS again, to see if it sticks this time?
Thank you for the list of bug fixes. Can't say if any of them are responsible in this case...
Also, we did try to change the admin password back after it reverted. On most of the NAS we were successful, but there was one were the old password persisted. We are planning to try again to reset it later. There was a slow response time in getting the usual "successful" message back after changing the AD server password, so there may be a network component as well.
chris_modica wrote:Thank you for your response. Understood. My IT department would like to upgrade the FW, but our customer's policy is not to.
That is a very naive position. Do they fail to update Windows, too? I suspect that they are confusing what the NAS calls "firmware" to what most others do (which is more like BIOS). The firmware is the Linux based operating system.
My point is that few are going to be able to test your situation, and Netgear will most likely simply refuse to, because the NAS is running such outdated firmware, not that there may already be a fix for it.
Our customer does update windows, but I think you are right there is a difference in perception of what the NAS Firmware is.
I'm curious, I thought the NAS FW is a Debian release. But is it actually a proprietary Netgear version of Linux?
Also, where is the FW stored? In the NAS box itself, or on the HDD?
I am asking this as in a separate case we are also trying to save the customer's data on a NAS that failed after a lightning strike. When we tested moving one of our NAS's HDDs to a new NAS box, after using Raidar, we were able to login to the admin page GUI and the data was accessible, but the FW version was the version of the NAS box, not the original one that was running on the first NAS.
Is that because the FW version is stored on the NAS box and loaded each time it starts?
NETGEAR Academy
Boost your skills with the Netgear Academy - Get trained, certified and stay ahead with the latest Netgear technology!
Join Us!
