Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Trustwave and Cybereason Merge to Form Global MDR Powerhouse for Unparalleled Cybersecurity Value. Learn More

Services
Managed Detection & Response

Eliminate active threats with 24/7 threat detection, investigation, and response.

Co-Managed SOC (SIEM)

Maximize your SIEM investment, stop alert fatigue, and enhance your team with hybrid security operations support.

Advisory & Diagnostics

Advance your cybersecurity program and get expert guidance where you need it most.

Penetration Testing

Test your physical locations and IT infrastructure to shore up weaknesses before exploitation.

Database Security

Prevent unauthorized access and exceed compliance requirements.

Email Security

Stop email threats others miss and secure your organization against the #1 ransomware attack vector.

Digital Forensics & Incident Response

Prepare for the inevitable with 24/7 global breach response in-region and available on-site.

Firewall & Technology Management

Mitigate risk of a cyberattack with 24/7 incident and health monitoring and the latest threat intelligence.

Solutions
BY TOPIC
Microsoft Security
Unlock the full power of Microsoft Security
Offensive Security
Solutions to maximize your security ROI
Rapidly Secure New Environments
Security for rapid response situations
Securing the Cloud
Safely navigate and stay protected
Securing the IoT Landscape
Test, monitor and secure network objects
Why Trustwave
About Us
Awards and Accolades
Trustwave SpiderLabs Team
Trustwave Fusion Security Operations Platform
Trustwave Security Colony
Partners
Technology Alliance Partners
Key alliances who align and support our ecosystem of security offerings
Trustwave PartnerOne Program
Join forces with Trustwave to protect against the most advance cybersecurity threats
Loading...
Loading...

HOWTO: Resetting a forgotten password from the Maintenance Tool (SSH) in WebDefend Version 5.1 and above

Expand / Collapse


This article applies to:

  • WebDefend (WAF) 5.1 and above

Question:

  • I've locked my user out of the console (GUI)
  • How do I reset my user password?

Procedure:

Note: This procedure will require you to stop services on the appliance.

  1. Log into the appliance via ssh with elevated privileges using either of the methods below.

    1. Log in as bgse then switch to root su - 
      • Run the following command to start the bgoperator: su - bgoperator
    2. ssh directly as bgoperator, which will run the bgoperator menu.

    Maintenance tool - Version 5.1 (7.10.107)
    bwd-7.10.107-1
    Machine Type is: STAND-ALONE
    Deployment Mode is: OUT OF LINE

    ---------
    Main Menu
    ---------
    1 -- Online Menu
    2 -- Offline Menu
    3 -- System Menu
    ? -- Help

  2. Chose option 2 -- Offline Menu

    ------------
    Offline Menu
    ------------
    1 -- Configuration Menu
    2 -- Import - Export Menu
    3 -- System Events Menu
    4 -- DB maintenance Menu
    5 -- License Management Menu
    6 -- Audit Log Menu
    q -- Return to Previous Menu
    ? -- Help

  3. Choose option 1 -- Configuration Menu

    Note: This will require you to stop services on the appliance.

    ----------------------

    Configuration Menu
    ------------------
    1 -- Reset all configuration
    2 -- Initial Settings
    3 -- Change user type from remote to local
    4 -- Reset WebDefend Console user list to default users and passwords
    5 -- Unlock all WebDefend Console users and set their passwords to the default value
    6 -- Unlock WebDefend Console user and set password to the default value
    7 -- Reset log files
    8 -- Networks interface cards (NICs) roles
    9 -- Advanced Inline configurations
    10 -- Enable/disable signature matching for HTTP free-form parameters
    11 -- BreachMarks Boundaries Menu
    q -- Return to Previous Menu
    ? -- Help

  4. Choose option 6 -- Unlock WebDefend Console user and set password to the default value.

    • You will see something similar to the output below.

    All services are down
    The following users were found:
    User's ID= 1 Name= bgadmin Organization=1
    User's ID= 2 Name= bgse Organization=1
    User's ID= 3 Name= bob Organization=1
    User's ID= 4 Name= jim Organization=1
    User's ID= 5 Name= bill Organization=1
    Enter user's ID
    >

  5. Enter the user id number. The system will ask if you want to proceed.

    • Type yes.
  6. Once the user's password has been reset you must start the services. Press 'q' several times to get back to the main menu.

    ---------

    Main Menu
    ---------
    1 -- Online Menu
    2 -- Offline Menu
    3 -- System Menu
    ? -- Help

  7. Choose option 1 -- Online Menu

    -----------

    Online Menu
    -----------
    1 -- WebDefend System Commands Menu
    2 -- WebDefend Enterprise Manager Commands Menu
    3 -- WebDefend Service Commands Menu
    4 -- WebDefend Watchdog Menu
    q -- Return to Previous Menu
    ? -- Help

  8. Choose option 1 -- WebDefend System Commands Menu

    -----------------------------

    WebDefend System Commands Menu
    ------------------------------
    1 -- WebDefend System Status
    2 -- Start WebDefend System
    3 -- Stop WebDefend System
    q -- Return to Previous Menu
    ? -- Help

  9. Choose option 2 -- Start WebDefend System

  10. After the services have started, log in to the console with the user name and default password. 

    • Note: Please refer to the WebDefend Getting Started Guide for the default password.

    You will be prompted to enter and verify a new password and select a location (default C:) to store the .prk file. 

Notes:

  • Default passwords can be found in the WebDefend Getting Started Guide.
  • Trustwave highly recommends changing the default password. Passwords must be PCI compliant.
  • The Reset User Password option is disabled for remotely authenticated users. For more information, see "Remote User Authentication" in the WebDefend User Guide. Contact your LDAP administrator to reset a password for a remote user that is authenticated via LDAP.

To contact Trustwave about this article or to request support:


Rate this Article:
     

Add Your Comments


Comment submission is disabled for anonymous users.
Please send feedback to Trustwave Technical Support or the Webmaster
.