In Security Analytics, this procedure is optional. However, it is always a best practice for administrators to change any default password for added security. Some organizations do not allow default passwords and make this procedure mandatory.
Prerequisites
You must have Administrator role privileges.
Procedures
Change Password for Context Hub Database
-
Log on to ESA host that runs the Context Hub service:
- SSH to the ESA host.
- Log on as root.
-
Log on to the MongoDB as the admin user:
mongo admin -u admin -p <current_admin_password> --authenticationDatabase admin
-
Switch to Context Hub database.
use context-wds
-
Type the following command to change the Context Hub account password. The default pasword is
context
.db.changeUserPassword(‘context’,’<new_password>’)
Update Context Hub Database Configuration with the new Password
- Log on to Security Analytics as admin.
- In the Security Analytics menu, select Administration > Services.
- Select the Context Hub service, then
> View > Explore.
-
In the Explore view on the left, select Configuration > database.
- In the right panel, type the updated database password in the MongoPassword field.
-
Restart the Context Hub service to accept the password change and force the session to start using the new password.
-
To validate the password change, go to the Config view of Context Hub service and check the configured data sources, and lists.
- If content appears in the Data Sources and Lists tab, the passwords match and were changed successfully.
- If you do not see the required content in the Data Sources and Lists tab, revise the service password to match the MongoDB password.