User passwords may be changed in the Users dialog box accessed from the Users, Groups, Roles page.
Active keystore password provider¶
This option sets the active keystore password provider, via a list of all available keystore password providers.
To change the keystore password click the Change password link.
First thing to do as an Administrator of the System, would be to dump the Keystore Password generated by GeoServer, store it somewhere not accessible by anyone, and delete any
security/masterpw.info or whatever file you used to dump the password in clear.
Keystore Password Providers¶
This section provides the options for adding, removing, and editing keystore password providers.
By default the login to Admin GUI and REST APIs with Keystore Password is disabled. In order to enable it you will need to manually change the Keystore Password Provider
config.xml, usually located into
security/masterpw/default/config.xml, by adding the following statement:
This section configures the various Password policies available to users in GeoServer. New password policies can be added or renamed, and existing policies edited or removed.
By default there are two password policies in effect,
default password policy, intended for most GeoServer users, does not have any active password constraints. The
keystore password policy, intended for the Root account, specifies a minimum password length of eight characters. Password policies are applied to users via the user/group service.
Clicking an existing policy enables editing, while clicking the Add new button will create a new password policy.