PingDirectory

Changing the administrative password

The setup tool automatically creates one administrative account when performing an installation. Users that authenticate to the configuration API or the administrative console are stored in cn=Root DNs,cn=config. Accounts can be added or changed with the dsconfig tool.

About this task

Root users are governed by the Root Password Policy and by default, their passwords never expire. However, if a root user’s password must be changed, use the ldappasswordmodify tool.

Steps

  1. Open a text editor and create a text file containing the new password.

    Example:

    $ echo password > <new-password>.txt

  2. To change the root user’s password, run ldappasswordmodify.

    $ bin/ldappasswordmodify --port 1389 --bindDN "cn=Directory Manager" \
  --bindPassword secret --newPasswordFile rootuser.txt

  3. Remove the text file.

    Example:

    $ rm <new-password>.txt