Resetting a forgotten password from the Maintenance Tool (SSH) in WebDefend Version 5.1 and above


This article applies to:

  • WebDefend (WAF) 5.1 and above

Question:

  • I've locked my user out of the console (GUI)
  • How do I reset my user password?

Procedure:

Note: This procedure will require you to stop services on the appliance.

  1. Log into the appliance via ssh with elevated privileges using either of the methods below.

    1. Log in as bgse then switch to root su - 
      • Run the following command to start the bgoperator: su - bgoperator
    2. ssh directly as bgoperator, which will run the bgoperator menu.

    Maintenance tool - Version 5.1 (7.10.107)
    bwd-7.10.107-1
    Machine Type is: STAND-ALONE
    Deployment Mode is: OUT OF LINE

    ---------
    Main Menu
    ---------
    1 -- Online Menu
    2 -- Offline Menu
    3 -- System Menu
    ? -- Help

  2. Chose option 2 -- Offline Menu

    ------------
    Offline Menu
    ------------
    1 -- Configuration Menu
    2 -- Import - Export Menu
    3 -- System Events Menu
    4 -- DB maintenance Menu
    5 -- License Management Menu
    6 -- Audit Log Menu
    q -- Return to Previous Menu
    ? -- Help

  3. Choose option 1 -- Configuration Menu

    Note: This will require you to stop services on the appliance.

    ----------------------

    Configuration Menu
    ------------------
    1 -- Reset all configuration
    2 -- Initial Settings
    3 -- Change user type from remote to local
    4 -- Reset WebDefend Console user list to default users and passwords
    5 -- Unlock all WebDefend Console users and set their passwords to the default value
    6 -- Unlock WebDefend Console user and set password to the default value
    7 -- Reset log files
    8 -- Networks interface cards (NICs) roles
    9 -- Advanced Inline configurations
    10 -- Enable/disable signature matching for HTTP free-form parameters
    11 -- BreachMarks Boundaries Menu
    q -- Return to Previous Menu
    ? -- Help

  4. Choose option 6 -- Unlock WebDefend Console user and set password to the default value.

    • You will see something similar to the output below.

    All services are down
    The following users were found:
    User's ID= 1 Name= bgadmin Organization=1
    User's ID= 2 Name= bgse Organization=1
    User's ID= 3 Name= bob Organization=1
    User's ID= 4 Name= jim Organization=1
    User's ID= 5 Name= bill Organization=1
    Enter user's ID
    >

  5. Enter the user id number. The system will ask if you want to proceed.

    • Type yes.
  6. Once the user's password has been reset you must start the services. Press 'q' several times to get back to the main menu.

    ---------

    Main Menu
    ---------
    1 -- Online Menu
    2 -- Offline Menu
    3 -- System Menu
    ? -- Help

  7. Choose option 1 -- Online Menu

    -----------

    Online Menu
    -----------
    1 -- WebDefend System Commands Menu
    2 -- WebDefend Enterprise Manager Commands Menu
    3 -- WebDefend Service Commands Menu
    4 -- WebDefend Watchdog Menu
    q -- Return to Previous Menu
    ? -- Help

  8. Choose option 1 -- WebDefend System Commands Menu

    -----------------------------

    WebDefend System Commands Menu
    ------------------------------
    1 -- WebDefend System Status
    2 -- Start WebDefend System
    3 -- Stop WebDefend System
    q -- Return to Previous Menu
    ? -- Help

  9. Choose option 2 -- Start WebDefend System

  10. After the services have started, log in to the console with the user name and default password. 

    • Note: Please refer to the WebDefend Getting Started Guide for the default password.

    You will be prompted to enter and verify a new password and select a location (default C:) to store the .prk file. 

Notes:

  • Default passwords can be found in the WebDefend Getting Started Guide.
  • Trustwave highly recommends changing the default password. Passwords must be PCI compliant.
  • The Reset User Password option is disabled for remotely authenticated users. For more information, see "Remote User Authentication" in the WebDefend User Guide. Contact your LDAP administrator to reset a password for a remote user that is authenticated via LDAP.

Last Modified 1/23/2017.
https://support.trustwave.com/kb/KnowledgebaseArticle15303.aspx