000026247 - How to reset the admin password in the RSA Security Analytics UI

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Sep 23, 2019
Version 5Show Document
  • Comment0
  • View in full screen mode

Article Content

Article Number000026247
Applies ToRSA Product Set: Security Analytics
RSA Product/Service Type: Security Analytics Server
RSA Version/Condition: 10.3.1 to 10.6.X. This does not work for 11.X.X.X
Platform: Jetty
IssueHow to reset the admin password in the RSA Security Analytics UI for 10.3.1 to 10.6.X.
How to reset the admin's password to SA default password in the Security Analytics user interface.
What can I do if I forgot the password to the admin account in the Security Analytics web interface?
Resolution

To reset the password to the admin account in the RSA Security Analytics UI, follow the steps below.



  1. Connect to the RSA Security Analytics server appliance via SSH as the root user.
  2. Navigate to the appropriate directory for the User Interface by issuing the following command: 

    # cd /var/lib/netwitness/uax/db

  3. Download the h2-1.3.172.jar file from this article and copy the file into the /var/lib/netwitness/uax/db directory on the appliance using WinSCP or a comparable FTP client.
  4. Stop the Jetty service with the following command: 

    # stop jettysrv

  5. Issue the following command to reset the admin user's password back to the default value: 

    # java -cp ./h2-1.3.172.jar org.h2.tools.Shell -url jdbc:h2:./platform -sql "update users set passwd = 'wOGQd2Vd59vitD0medIGRNEHInjEFlJosJSFeH3k0aNlhBTsuHQ0cQ==' where login = 'admin'"

  6. Start the Jetty service with the following command: 

    # start jettysrv



If this does not solve your issue, please open a case with RSA Technical Support and reference this article so that we may better assist you.

Notes

See the screenshot below for an example of the procedure.



Legacy Article IDa66372

Attachments

    Outcomes