Thread Info
  • State Verified Answer
  • Locked Locked
  • Replies 5 replies
  • Subscribers 27 subscribers
  • Views 3647 views
  • Users 0 members are here
Options
Suggested
This discussion has been locked.
You can no longer post new replies to this discussion. If you have a question you can start a new discussion

Admin password no longer accepted

NinoPadrutt

Hi

I have astrange behaviour with my Sophos XG 115 Firewall. Due to the latest SQL Injection Vulnerability, I changed the default admin password according to this article: https://community.sophos.com/kb/en-us/123732.

 In the evening I wanted to come back and restarte the Firewall as the last step mentioned in the blog post. But now I wasn't able to sign in anymore. It always just states that the Login Failed. I also tried the old password in case it didn't update it properly but still the same.

Since I used a password manager I'm fairly certain that I enter the correct password. I presume that i haven't restartet the appliance yet wouldn't cause such a behaviour.

Is it possible that there is some issue due to the fact that my new password contains signs like "*{}[/%"? And how would I get back access to the system, prefereably without having to reset the whole thing?

Thank you very much!



This thread was automatically locked due to age.
Parents Reply
  • +1 in reply to NinoPadrutt

    Hello Nino,

    sorry I missed it. I think the basic question is whether you have physical access to the appliance. If yes, I would proceed from point 4. You will need a keyboard and an HDMI monitor. This is probably the easiest and fastest way to solve the problem.

    Regards

    alda

Children
  • 0 in reply to alda

    Hi Alda

    Thanks for clarification. I have a rather easy access to one of the two Firewalls. The other one is in a different city. But I will have a look today at the closer one and if that works will plan to do the same on the second one as well. Unless there is some way to do it safely from remote. But so far I haven't found anything along that lines.

    Thanks
    Nino

  • +1 in reply to NinoPadrutt

    So, I was able to resolve the issue with one of the firewalls by connecting over the serial port and reseting the password according to step 3 here: community.sophos.com/.../123732.

    The thing who confuses me, I created another admin account which was able to login to the user portal but not the admin portal. So I thought that either changed the permissions long time ago to non-admin. Turns out the user still had admin permissions and even after changing the passwort (set it to the same value again) or completely recreate the user with the same username and password I still wasn't able to login to the admin console. Funny enough the system didn't give me any error at this point - it just wouldn't let me login.

    What DID work was creating another admin user with a different username and password and here I was also able to login properly. So for me it sounds like Sophos does have an issue with certain usernames / passwords / combinations of the two. If that is the case I have to say I find it very troubling.

    But maybe there is a very simple explanation for that behaviour. If so, I'm very glad about all kind of more informations!

    Thanks

    Nino