Reset Admin Password

pcnweb

Old answers show setting an MD5 hashed password via SQL command - this no longer works. Ex:

UPDATE ost_staff SET passwd = MD5( 'anewpassword' ) WHERE staff_id='1';

What is the correct way to do this now?

KevinTheJedi

pcnweb

Use Bcrypt with 8 rounds entropy instead.

Cheers.

pcnweb

I created a new one via PHP, ex:

echo "output: ".password_hash("anewpassword", PASSWORD_BCRYPT,["cost" => 8]);

It looks good compared to the other user hashes, but it doesn't work. Is there another field I need to clear where my user could be "locked out"?

If there is no way for this to work in the current version, can I set the 'isadmin' value to 1 on another staff member to get in with their credentials and fix mine?

pcnweb

As noted above, Bcrypt with 8 rounds entropy (at least from PHP's password_hash function) does not work. Anyone have a working solution or is the only answer to give another staff account admin privileges?

KevinTheJedi

pcnweb

This works just fine for me (with 8 rounds entropy as mentioned above):

https://bcrypt-generator.com/

Cheers.

pcnweb

I just tried that site as well - no dice. So, could my admin account be locked by a bit set in another table? Your method is not working unfortunately, what's the alternative?

KevinTheJedi

pcnweb

Are you getting a specific error message? Check the Agent's backend and make sure it's set to NULL which means local password that you set. Also, make sure that account is not locked.

Cheers.

pcnweb

I get "Access Denied". 'backend' is set to NULL.

"make sure that account is not locked"

I wondered about this above - where do I set/unset locked in the db tables?

KevinTheJedi

pcnweb

The isactive column needs to be set to 1.

Cheers.