PingDirectory

Changing the administrative password

Users that authenticate to the Configuration API or the administrative console are stored in cn=RootDNs,cn=config. The setup tool automatically creates one administrative account when performing an installation. Accounts can be added or changed with the dsconfig tool.

About this task

Root users are governed by the Root Password Policy and by default, their passwords never expire. However, if a root user’s password must be changed, use the ldappasswordmodify tool.

Steps

  1. Open a text editor and create a text file containing the new password. In this example, name the file rootuser.txt.

    $ echo password > rootuser.txt
  2. Use ldappasswordmodify to change the root user’s password.

    $ bin/ldappasswordmodify --port 1389 --bindDN "cn=Directory Manager" \
    --bindPassword secret --newPasswordFile rootuser.txt
  3. Remove the text file.

    $ rm rootuser.txt