WSO2 IoT Server enables admin users to reset passwords of other users and for device owners to reset their own password once they have signed in to WSO2 IoT Server's device management console. This is useful to address the following scenarios:
- Reset the password when the user or device owner forgets the password.
- Reset the password when an account is locked due to an incorrect password entry.
- Secure the device details by resetting the password.
Take a look at how an administrator and device owner can do the same task via the device management console:
Start the WSO2 IoT Server core profile via command prompt, if you have not started it before.
------Navigate to the bin directory-----
------For Linux/Mac OS/Solaris------
Sign in to the Device Management console as an admin user.
Click here to expand...
Follow the instructions below to sign in to the WSO2 IoT Server device management console:
If you have not started the server previously, start the server.
Access the device management console.
Enter the username and password, and sign in.
The system administrator will be able to log in using
admin for both the username and password. However, other users will have to first register with WSO2 IoT Server before being able to log into the IoTS device management console. For more information on creating a new account, see Registering with WSO2 IoT Server.
Click LOGIN. The respective device management console will change, based on the permissions assigned to the user.
For example, the device management console for an administrator is as follows:
Click View under USERS.
- Click the icon on the user whose password you want to reset. A password entry dialog appears.
Enter the new password and click Save.
Your new password should be 5 characters or more and should not include any white spaces.
Follow the instructions given below to change your password when you are signed in to the device management console:
Sign into the device management console using
admin as the username and
admin as the password:
- Click the user icon, and click Change Password.
- Enter the required details and click Change.
- Click YES to change your password.
Why do I get the following warning: org.wso2.carbon.server.admin.module.handler.AuthenticationHandler - Illegal access attempt while trying to authenticate APIKeyValidationService?
After changing the default user password you might run into this error. If you do run into this error, follow the steps given below:
- Change the credentials stored in the
<APIKeyManager> element of the
<IOTS_HOME>/conf/api-manager.xml file of the API Gateway node/s.
Have you set the priority of the SAML2SSOAuthenticator handler higher than that of the BasicAuthenticator handler in the
<IOTS_HOME>/conf/security/authenticators.xml file? If so, the
SAML2SSOAuthenticator handler tries to manage the basic authentication requests as well. Set a lower priority to the
SAML2SSOAuthenticator than the
BasicAuthenticator handler as follows:
<Authenticator name="SAML2SSOAuthenticator" disabled="true">
<!-- If this authenticator should skip any URI from authentication, specify it under "SkipAuthentication"
<!-- If this authenticator should skip any URI from session validation, specify it under "SkipAuthentication