I'm having a problem which I can't solve.
I have bought a cheap vps, with ubuntu 12.10 then installed the tomcat7, maven, and nexus. All of them are the latest. This is a fresh install from everything. I started and deployed the nexus, no errors in catalina, no errors in nexus, and when I tried to login with admin/admin123, I have failed.
I'll show you any of my log file what you need, please help me with this.
EDIT: nexus is 2.2-01
EDIT2: this is a cheap server with 512 ram, running without X
My security-configuration.xml is this:
<?xml version="1.0"?>
<security-configuration>
<version>2.0.3</version>
<enabled>true</enabled><!-- was true -->
<anonymousAccessEnabled>true</anonymousAccessEnabled>
<anonymousUsername>anonymous</anonymousUsername>
<anonymousPassword>{1FH7iFzhCukHI3ISkjq+AuQZb+bOMrB70bGqF2y6fNE=}</anonymousPassword>
<realms>
<realm>XmlAuthenticatingRealm</realm>
<realm>XmlAuthorizingRealm</realm>
</realms>
<securityManager>default</securityManager>
</security-configuration>
Do the following:
stop Nexus
change the enabled in the xml to false
restart Nexus
get in without anything as admin that way
reset the admin password
enable the security again in the user interface
Oh and btw. I would suggest to run Nexus from the bundle with Jetty on a VPS and not with the war file in Tomcat so you get more performance out of it.
Update: Security can no longer be disabled in Nexus 2.7 and up. You have to insert an admin user into the xml as documented in this support page.
Resting nexus admin password from default "admin123" to more secured password without changing config files.
I got my nexus instance up and running with no issues login in as admin user and default password. I wanted to reset admin password ( to more secure password) and followed the following instructions (without touching the security.xml file as i hate changing config files to do any password resets)
Login to nexus with admin user and default password.
Click on server link under administration tab.
Make sure that SMTP settings are set up correctly ( hostname , port
, username and passowrd).
Click on "Test SMTP settings" and provide an email address to see if
you get mail from nexus server.
If you have already set up SMTP correctly on your instance you don't
need to run step 3 and 4.
Hit "Users" link under Security tab and select admin user. make sure
you have set up the correct email for this user.
Log out of nexus .
Login and hit forgot your "password" link.
The password recovery screen will prompt you for user which is
"admin" and email should be the one you have listed in step 6.
Hit "Reset Password" button and you ll get a much stronger password
in email .
Again Checking SMTP settings and admin user's email is one time action. Step 8 to 10 take less than a minute and one can easily reset admin password without touching the security.xml file. Ofcourse this file will be automatically updated as soon as you login with new password. Preferred way than modifying the file manually.
Related
Windows server 2016.
Old users (those, having profiles/folders created at "C:\Users") are able to remote into our server via RDP, but new users are not. Initially the error was The User Profile Service service failed the sign-in. User profile cannot be laoded.
Checking server, it seems "C:\Users\Default" has the only folder/entry "AppData", nothing more. I copied the file "NTUSER.DAT" from similar server "Default" folder. Also, folder permissions are identical.
Now new users are able to login, but it goes to a temporary profile and of course, user's profile at "C:\Users" does not get created.
Event logs does not tell much, basically just confirms login errors/notes we get:
Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off.
Windows has backed up this user profile. Windows will automatically try to use the backup profile the next time this user logs on.
How this can be solved?
Open the registry editor and go to HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList then find the key where the ProfileImagePath is the profile location of the user that's not being created. Export, then delete that registry key.
I've got a production site with three users, two of which are admins. None are able to log in with their password; They get "Sorry, unrecognized username or password. Have you forgotten your password?" We ARE able to log in by requesting a new password and getting a temporary login key, so I'm able to access the administration pages and look at the unhelpful logs, but of course this is not sustainable.
I've tried:
logging in on various devices
clearing the cache
running update.php
adding a $cookie_domain in settings.php
checking the database to make sure the users exist (they do, with hashed passwords)
My .htaccess file reroutes all traffic to https://www.
Core is Drupal 7.59.
Any thoughts?
I was using the Drupal 7 module "Hide Node Field." When I deactivated that module, user logins began working again. I will file a bug report with the Hide Node Field developers.
Running Drupal 7 on DrupalVM. Had a successful installation, but when I visited my Drupal site, it requires a login and password. I couldn't find in the docs where the root admin login credentials are. Usually Drupal allows you to set this up, but not the case with DrupalVM (unless its in a config file and I overlooked it). Are there root login credentials or do you have to create an admin user (through your db) when first getting started with DrupalVM? Thanks.
Username and password: admin:admin https://github.com/geerlingguy/drupal-vm#3---configure-your-host-machine-to-access-the-vm
My friend asked me to help him with his site on wordpress, he lost the wp admin panel password.
But he didn't loose the mysql login information so sirst i thought about changing the password right through phpmyadmin. I get in phpmyadmin and saw that password looks a little bit strange, like this $P$BUKCBYLJ.MmLPqlzZTw4P/rLnR.omZ.
This article helped me to create password that looks the same as passwords that already existed in mysql db passwords, so i put it in my admin's user_pass field.
But i'm still unable to log in.
Actually, when i try to access /wp-admin/, i see no standard wordpress login page
I see this
And when i fail to log in it gives me 401 and shows this page
Is it ok? What the difference between situations when standard login page shows and when this authentication alert box shows ?
Anyway, all I can think of is:
1) Online password hasher gives me wrong password,
2) You see, this authentication box says "please use your control panel password", so i think the site uses some other passwords, not passwords that are in it's db. Is it possible?
Thanks in advance!
You are seeing a Basic HTTP Authentication prompt, which is not part of WordPress - it is being sent by your webserver (likely Apache or Nginx). This provides an additional layer of security against brute force attacks as you need to "log in" to the web server before you can authenticate against WordPress.
The passwords for Basic Authentication are typically stored in .htpasswd files, and defined either in an .htaccess file or your webserver's configuration. Refer to this guide for some more information on how this is set up.
You will need to reset the Basic Authentication password in the .htpasswd file, or remove it entirely, before you can log into WordPress. Once you access the WordPress login prompt you can use the password that you have set for the user you want to login as. Options for resetting your WordPress password via SQL, phpMyAdmin, FTP, and the WP CLI can be found in the article Resetting Your Password on the WordPress site.
Meteor reset password does not send email to user for password reset.
There are not any errors.
In telescope app after clicking on "Email Reset Link" button it shows "Email sent", however the user does not receive an email for password reset.
The problem had been solved partially. Because, after MAIL_URL installation (+Mailgun) it is still does not work. The problem can be related to nitrous.io, because nitrous.io box doesn't support SMTP.
Does someone had installed meteor app on nitrous.io and have mail notifications?
Does some of the nitrous.io developers can suggest something?
You need to set up an SMTP service (Meteor's own hosting uses Mailgun, but others are available), and set the environment variable MAIL_URL to match the details of your service, as documented here.
Ideally do this in the Nitrious.io environment before Meteor starts, but you can do it on startup if required as I assume it won't be required immediately:
process.env.MAIL_URL = 'smtp://USERNAME:PASSWORD#smtp.mailgun.org:587'; // (or equivalent for another provider)