Obtaining a root shell on Ruckus ZoneDirector

ZoneDirector releases after 31 Aug 2023 (e.g. 10.2.1.0.236+, 10.5.1.0.265+)

Ruckus implemented firmware signing in ZoneDirector 10.2.1.0 build 236 and 10.5.1.0 build 265.
So you will need to download an older 10.2.1.0 or 10.5.1.0 build from https://support.ruckuswireless.com/software (e.g. I used 10.5.1.0 build 255) and do an 'upgrade' (Administer > Upgrade).

TIP

Your support entitlement isn't checked if you're just installing a different build of the currently installed ZoneDirector version.

Now you can follow the procedure, below, for older ZoneDirector releases.
Note that you will lose your Root Shell if you re-upgrade your ZoneDirector.

ZoneDirector releases 15 Nov 2019 - 31 Aug 2023

The procedure below permanently adds a root shell command to your ZoneDirector CLI.
If you prefer a temporary, one-time use, root shell then follow the instructions here.

This patch should be uploaded as a Software Upgrade (Administer > Upgrade > Software Upgrade).

TIP

The upload process completes the patching; no upgrade will be offered. Instead you will be given instructions on using the root shell.

TIP

The upgrade will also add a temporary Upgrade Entitlement if necessary. Subsequent software upgrades will disable the root shell: you will need to re-apply this patch each time you upgrade your ZoneDirector's software.

In case you miss the instructions, to access the root shell from the CLI:-

ruckus-cli

ruckus> enable 
ruckus# debug 
You have all rights in this mode.
ruckus(debug)# script 
ruckus(script)# exec .root.sh
Ruckus Wireless ZoneDirector -- Command Line Interface
ruckus$

TIP

You can, if you wish, create the patch yourself.

ZoneDirector 9.x/10.x releases prior to 15 Nov 2019

Use CVE-2019-19834:-

ruckus-cli

ruckus> enable 
ruckus# debug 
You have all rights in this mode.
ruckus(debug)# script 
ruckus(script)# exec ../../../bin/sh


Ruckus Wireless ZoneDirector -- Command Line Interface
Enter 'help' for a list of built-in commands.

ruckus$ stty echo
ruckus$

ZoneDirector 3.0 - 8.x

The CLI has an unprivileged !v54! command which drops you straight to the root shell:-

ruckus-cli

ruckus% !v54!
ruckus%

TIP

Really though, you should just upgrade to 9.3 or later.
If you're still using 3.0 because upgrade functionality is broken on modern PCs then follow the steps here.

Obtaining a root shell on Ruckus ZoneDirector ​

ZoneDirector releases after 31 Aug 2023 (e.g. 10.2.1.0.236+, 10.5.1.0.265+) ​

ZoneDirector releases 15 Nov 2019 - 31 Aug 2023 ​

ZoneDirector 9.x/10.x releases prior to 15 Nov 2019 ​

ZoneDirector 3.0 - 8.x ​

Obtaining a root shell on Ruckus ZoneDirector

ZoneDirector releases after 31 Aug 2023 (e.g. 10.2.1.0.236+, 10.5.1.0.265+)

ZoneDirector releases 15 Nov 2019 - 31 Aug 2023

ZoneDirector 9.x/10.x releases prior to 15 Nov 2019

ZoneDirector 3.0 - 8.x