A new (or second-hand) Ubiquiti Unifi Access Point (AP) can be an intimidating beast. Setting up Unifi APs is different from most other networking equipment you may come across. But don’t worry, learn how to SSH into Unifi AP (access point) in this tutorial.
Ready? Read on to get started!
Чтобы изменить пароль Администратора для входа в веб-интерфейс устройства, надо зайти в раздел меню System и найти подраздел System Accounts. Кликаем на значок в виде увеличительного стекла и появляются три поля для ввода:
В поле «Current Password» надо ввести пароль по умолчанию в Ubiquity AirOS — . В нижние два поля надо придумать и прописать свой пароль, который Вы будете использовать в дальнейшем.
Всем добрый день.
Требуется помощь — контроллер не принимает ни один пароль.
Версия контроллера — 5.4.11. Установлен под Windows XP. 3 сервиспак.
После внеплановой перезагрузки сервера контроллер перестал принимать пароли. Хотя забыть я их не мог. При этом фаерфокс их сам отлично помнит и пытается подставить. Однако ни один из пролей в системе не принимается. Утилита Discovery Utility выдает списком все точки — статус Managed/Adopted. Пинг до всех точек идет. Обе настроенные сети, кстати говоря, работают без проблем. То есть точки функционируют в рабочем режиме.
Пробовал глянуть пароли по рецепту с этой ссылке — http://www.raymond.pro/poleznye-programmy/vzlom/vzlom-parola-ubiquity-unify .
Не помогло. Один раз прога запустилась и к базе я приконнектился. Но она ни одного пользователя не увидела. Как будто в базе вообще нет пользователей/паролей. Что интересно — больше программа вообще не смогла запуститься. Сам же контроллер запускается на ура. Но вот доступа к нему я не имею (((. Что делать? Мне требуется настройки поменять в рабочих сетях, и оставить как есть не могу.
По SSH подключаюсь к точкам по админскому паролю без проблем. Чего то вообще не понимаю ничего (
Последнее редактирование: 1 Май 2018
Once you know your access points’ state, you can now access them, but first, start with accessing the unadopted one.
Open a terminal, and run the command below to SSH into the AP. When prompted, enter the unadopted AP’s password you noted in the “Determining if the AP has Previously Been Adopted” section.
If the SSH session is successful, you’ll get a BusyBox built-in shell (ash) message like below.
If the credentials do not work, reset the access point by performing the reset procedure on your AP.
Showing Successful SSH connection
Now that you can access an unadopted AP via SSH, you can also access a previously adopted AP. But first, you’ll reset the previously adopted AP. Doing so sets the AP in a ready-to-be “adopted” state by your controller.
Run the set-default command below to clear Unifi access points config and reboot the AP, which takes a few minutes to complete. This command puts the AP into the same state as using the physical reset switch on the device.
Resetting the AP configuration to factory default.
Prerequisites
Run the passwd command at the shell prompt, and then enter a new password and confirm it.
Changing the default password.
Note that if you set up your controller to use your account.ui.com address and enable two-factor for device authentication, SSH access will not work.
To reset the credentials for all access points on your network:
1. Open the controller, and select the settings (gear) icon.
Controller Configuration sits in “System Settings
Configuring Device SSH Authentication Settings
Finally, click the Apply Changes button to save the changes.
Before you can SSH into a Unifi AP, you must first determine if the AP was previously adopted or not. A controller centrally manages all Ubiquiti devices with an access point. An access point that a controller has claimed (associated with) is referred to as “adopted” while a new or factory rest AP is “unadopted”.
Next, click the AP icon on the left-hand side to display the device listing.
Accessing Ubiquiti Device Listing
The image below shows two APs connected to a controller. The first AP (denoted by a white status dot) is claimed by another system, while the controller claims the second AP (denoted by a green status dot).
Note the IP addresses of both APs like the ones below, as you’ll need them to access both APs later.
If you cannot see the AP in the devices page of the controller (or you haven’t set up a controller yet), try your DHCP server. The AP can usually be found on your internet router and should list all of the devices on your network with their IP and MAC addresses.
You don’t need to know what a MAC address is, but know it’s on a label on the underside of the access point called “MAC ID.” Match the MAC address on your AP to an IP on your network, and you are good to go.
Viewing Unifi Controller Device List
If the access point is adopted, the credentials will be root/your-SSO-account’s-password (account.ui.com).
Conclusion
In this tutorial, you’ve learned that there’s nothing you can do from the console of Unifi AP that you can’t also do from the controller. But still, knowing how to SSH onto Unifi AP is a handy exercise. This access method lets you quickly check and automatically pull information, such as the current AP firmware.
You can also SSH to an AP to update the firmware, which could be automated via SSH if you have many devices, rather than clicking through the web GUI of the controller.
Now how do you plan to build upon this newfound knowledge? Perhaps use SSH to integrate the AP into a configuration management system, such as Salt or Ansible, to automate updates?
