Actions

Difference between revisions of "How you reset an administrator password?"

From Joomla! Documentation

(Added option for built-in PASSWORD function.)
Line 61: Line 61:
 
* JavaScript MD5 - http://pajhome.org.uk/crypt/md5/
 
* JavaScript MD5 - http://pajhome.org.uk/crypt/md5/
 
* MD5er - http://www.md5er.com/
 
* MD5er - http://www.md5er.com/
 +
* An online app to create encrypted passwords specifically for Joomla 1.5: http://www.subclosure.com/generate-new-joomla-1-5-md5salt-encrypted-passwords-to-store-in-database.html
  
  
Line 69: Line 70:
 
'''Other MD5 tools'''
 
'''Other MD5 tools'''
 
* There are many free online and downloadable MD5 utilities. Google "MD5 hash tool"
 
* There are many free online and downloadable MD5 utilities. Google "MD5 hash tool"
 +
  
 
[[Category:FAQ]]
 
[[Category:FAQ]]

Revision as of 19:54, 15 February 2010

Introduction Because passwords are stored using a one-way "salted" MD5 hash which prevents recovering the password, you cannot recover an existing password, but you can reset it to a new password by editing the password field in the database. In the following directions, you will set the password MD5 value to a known value and then log-in using the password that matches that value. Once logged in, you can change the password again using normal Joomla! user access screens.

Joomla! 1.0.13 Enhanced Password System Initial tests indicate that the method described here also works with Joomla! 1.0.13 salt-enhanced passwords. This is because Joomla! automatically updates password data from earlier versions to the 1.0.13 format.

Directions

1. Use a MySQL utility such as phpMyAdmin or MySQL Query Browser .

2. Open the correct database and select the table, jos_users . (Change default table prefix, 'jos_' to your table prefix if it is different.)

3. Select the record (or table row) for your administrator account (The first admin account, created by default, has an id of 62).

4. Copy and paste a known MD5 hash, such as one of the samples provided with this FAQ, into the password field. Warning: You must paste the password's hash value, not the password itself. You can use any of the following password = hash pairs, or create your own using one of the tools listed below.

password = "MD5 hash of password"
------------------------------------------------------
admin = 21232f297a57a5a743894a0e4a801fc3
secret = 5ebe2294ecd0e0f08eab7690d2a6ee69
OU812 = 7441de5382cf4fecbaa9a8c538e76783

5. Save the record.

6. Point your browser to your site and log as the administrator using your new password.

7. Once logged in, Joomla will convert your md5 hash to a salted md5 hash, but you should change the password again to one that only you know.

Using phpMyAdmin built-in 'PASSWORD' function for new passwords

1. Use a MySQL utility such as phpMyAdmin with MySQL 5.0.1 (or newer).

2. Open the correct database and select the table, jos_users . (Change default table prefix, 'jos_' to your table prefix if it is different.)

3. Select the record (or table row) for your administrator account (The first admin account, created by default, has an id of 62).

4. Click on 'Edit Record'.


5. To the right of the 'password' field, select the drop-down "function" of "PASSWORD".


6. Enter new password in the 'data' field.


7. Save the record.


8. Point your browser to your site and log as the administrator using your new password.


9. Once logged in, Joomla will convert your md5 hash to a salted md5 hash, but you should change the password again to one that only you know.


Generating your own MD5 hash from a password of your choice

Alternatively, you can set the password to a value of your own choice. Use tools, such as the following, to create your own strong hashed password. Use the above directions once you've generated a hash with these tools.

Online MD5 hash creation tools


Free MD5 utilities for download

Other MD5 tools

  • There are many free online and downloadable MD5 utilities. Google "MD5 hash tool"