How do I reset the xibo_admin account password?
- Xibo for Android
- DSDevices DSCS9X/95 Set-up Guide
- Install a White Label or a different Player version on DSDevices
- CEC Screen Power on/off with DSDevices
- Hardware Recommendations
- Philips Signage SoC Monitors
- Sony Bravia SoC
- Managing Storage on the Android Device
- Player Settings
- Players without an Internet Connection
- Remote Administration with SS Helper
- Restart Rooted Device with a Shell Command
- Running Xibo for Android
- Resolving Common Issues
- Error shown when I try to licence my Player?
- Player not updating from the CMS?
- I can see my Licence entry but the Player appears unlicensed?
- Error message - Player is missing dependencies
- My scheduled Layouts are not working?
- Layout won't play? Splash screen plays?
- Watchdog error message
- Troubleshooting for Administrators
- Audit Trail
- Log Information
- Player Logs
- Getting the Player Status
- Request Player Status via CMS - Logged in Players only
- Request Player Status directly from a Device
- Can I use the Xibo name / logo?
- Can I run a Xibo Player on Raspberry Pi?
- How can I increase the upload file size limit?
- How do Players communicate with the CMS?
- How many displays can Xibo support?
- How do I reset the Xibo_admin account password?
- Power On/Off for Players
- Testing with Xibo
- Why do I need a Default Layout?
- Xibo for Android FAQ's
- Autoplaying Embedded Youtube Videos
- Closing to Home screen
- Displaying Images
- Embedded TV
- External SD card not listed when running Banana-Pi
- Helper Command to change Time zone
- HTML5 Video
- Memory Notifications
- Menu not accessible
- SSL Support
- Using Portrait Displays
- Video wont play properly
On this page
How do I reset the xibo_admin account password?
If you’ve forgotten your xibo_admin account password and don’t have any way to recover access to your Xibo system, you can reset the xibo_admin account password as follows:
-
Connect to the Xibo database and run the following SQL. You could do that from the mysql command line application, or via a web interface such as PHPMyAdmin:
UPDATE `user` set `UserPassword` = MD5('password'), CSPRNG = 0 WHERE `UserID` = 1 LIMIT 1; -
Your xibo_admin password will then be “password”. Please ensure you then change it as soon as you can afterwards.
If you are using a Docker based install, take a look at the knowledge base post for further guidance: How can I run a SQL command when using a Docker Install?
If you’re using PHPMyAdmin, there’s a helpful guide here showing you the steps to take to run the above SQL command by clicking the link below:
We are not able to access the account and the manager
Thanks to @eduardo for writing those up!
MD5 Hashed Password Security
For those concerned to see the MD5 function being used there as part of the password reset routine, Xibo no longer actively uses MD5 hashes to store user passwords. It uses PBKDF2 derived salted and hashes since the 1.6 series. Passwords stored in the older MD5 hash format will be automatically upgraded to salted and hashed storage when the user next logs on. So in our example above, we set a legacy MD5-based password for the xibo_admin user, and then when we log on the password will be converted to the newer storage format automatically.
Since Xibo 1.8.0-beta, Xibo uses the newer PHP password_hash() function to generate secure hashes for password storage, which uses the PHP default algorithm. At the time of writing, the default is bcrypt. As time passes, and PHP update that default, passwords will be upgraded automatically as users log in to more secure formats.
