Bigfix Inventory Lost Password

ivan_victor 2019-05-20 14:57:39 UTC #1

Hello Guys

I recently installed the Bigfix inventory and lost the webui login, can i create another admin user or reset this password?

I found in the web only for the console user.

thanks

mhayden 2019-05-20 15:33:29 UTC #2

This link should get you what you are looking for.

If you recently installed it then maybe you could just do a reinstall with little risk of losing any historical data.

ivan_victor 2019-05-20 20:46:21 UTC #3

But I’ve already have some imports in the database, can i reinstall only the bigfix inventory?

To reinstall the whole platform would be a problem because is in a client.

thanks

mhayden 2019-05-20 21:09:12 UTC #4

You can just reinstall Inventory. It will have no bearing on the information contained within your BigFix root server.

The imports are importing information that exists in the BigFix database prior to the scanner being deployed and once that is deployed then information from the scans will also be imported. The scanned information can be collected again once you have Inventory reinstalled.

mike_CSTG 2021-02-08 19:05:31 UTC #5

Does anyone have the correct link to this page for info on how to reset the local BFI login?

https://www-01.ibm.com/support/docview.wss?uid=ibm10870046

Thanks!

cmcannady 2021-02-08 19:37:00 UTC #6

@mike_CSTG, I think one of these will be what you’re looking for.

https://support.hcltechsw.com/csm?id=kb_article&sys_id=b8a2e2141bf9a018beab64e6ec4bcb81

https://help.hcltechsw.com/bigfix/10.0/inventory/Inventory/admin/t_reset_db_password.html

I’ve found that prefixing all of my Google searches with “hcl bigfix” and then what keywords I’m looking for returns the best results. I hope this helps.

mike_CSTG 2021-02-09 00:38:58 UTC #7

Thanks Casey…Do you or anyone know the process for resetting the BES Console local operator if you lost the password?

JasonWalker 2021-02-09 04:25:05 UTC #8

If you have the site singing key and it’s password (license.pvk, used when you run the BESAdmin tool), there is a method to reset an operator password…I don’t have it handy though, you should open a support incident and they can walk you through it.

mike_CSTG 2021-02-09 11:16:34 UTC #9

Thanks for the response Jason. We don’t have the license.pvk password for this environment. I think it was a case where an admin setup the BF Platform and BFI and then left the company and no passwords were documented.

JasonWalker 2021-02-09 12:55:23 UTC #10

So…you don’t have the license.pvk file, and if you found it you don’t have the password to use it.

I’m afraid that’s not good news. The license.pvk is the private key to a certificate (license.cer) that is the source of your BigFix clients trusting your server. We (HCL) never have your private key and cannot recover it.

Do you have any working BigFix Console accounts? Was it configured to use LDAP credentials, where maybe we could add another user on the LDAP side to inherit some rights?

Basically losing the pvk is going to mean rebuilding on a new BigFix server, and migrating your clients from the old server to the new one. If you don’t have access to an operator on the old server, that complicates moving the clients a bit.

How large is the deployment? Normally I’d recommend opening a Support Incident, and that’s still definitely worthwhile to get you started, but this is a case where you may want to engage BigFix Services to help you with a forward path. We generally refrain from advertising ourselves in the Forum, I’ll be contacting you by DM.

mike_CSTG 2021-02-09 13:01:11 UTC #11

Yeah…we may be SOL. Is there a way to change the password in the database like you can for BFI…for the BES Console local operator?

JasonWalker 2021-02-09 13:19:17 UTC #12

Negative on that - please don’t try.
The BigFix records are digitally signed, and modifying any of the user records directly will…pretty much set it on fire. The kind of thing you can only repair using BESAdmin - with the pvk file you don’t have and the password you don’t know.

I sent some lengthier info by email, but I think your best hope is that you may find there’s an LDAP integration set up, and maybe if we create or modify an Active Directory account to match your assigned roles we could get in to the console that way.

It’s also possible, though less likely, that your previous admin has a password stored somewhere - do you have access to their files, Documents, Desktop, etc.? I assume you’ve already searched for the license.pvk, but I wonder whether he might also have had a script with API calls that he might’ve stored a password in? I’d look through any .ps1, .py, .vbs, .bat, or .CMD files he might’ve had in any directory - you might get lucky and find he had something using the REST API and saved a password in one of their scripts.

mike_CSTG 2021-02-09 13:26:40 UTC #13

I understand. Thanks Jason for the extra info and places to look. Appreciate it!