Root account¶
The highly configurable nature of GeoServer security may result in an administrator inadvertently disrupting normal authentication, essentially disabling all users including administrative accounts. For this reason, the GeoServer security subsystem contains a root account. Much like its UNIX-style counterpart, this account provides “super user” status, and is meant to provide an alternative access method for fixing configuration issues.
The username for the root account is root
. Its name cannot be changed and the password for the root account is the keystore password providers.
Logging in as root
is disabled by default:
Enable using the web admin console following the instructions in Keystore Password Providers.
You may also enable manually by changing the Keystore Password Provider
config.xml
, usually located insecurity/masterpw/default/config.xml
, by adding the following statement:<loginEnabled>true</loginEnabled>
Enable using application property
GEOSERVER_ROOT_LOGIN_ENABLED
. With value oftrue
to enable, or value offalse
to disable, authentication of theroot
user.