Cannot remember user account old password

[grahambenidorm]

Hi guys

Firstly apologies if this is posted in the wrong place. I have DirectAdmin on my VPS server and am getting used to it however I have screwed up when it comes to one particular user account which I cannot log into directly.

I can access the user account via the reseller account which it is under and want to change the password however cannot remember the old log in password in order to change it.

I guess I am am an idiot however I am sure I am not alone in this.

I could delete the user account and start again but it has an SSL cert and it would be a lot of hassle for me to do that and I am not that confident in re installing the SSL cert anyway.

I have used SSH a bit and wonder if there is any way I can change the user accounts password this way. I know you can use a command to change the admin password.

Any help much appreciated but please be gentle with me as I think I need the idiots guide to doing it if that is possible.

Thanks in advance.

 

[Richard G]

Do you have access to the admin section of Directadmin?
If yes, don't use reseller, just use the admin section, top section "server management" and use the "change passwords" option in there.
You only need to know the username, no old password necessary.

 

[grahambenidorm]

Do you have access to the admin section of Directadmin?
If yes, don't use reseller, just use the admin section, top section "server management" and use the "change passwords" option in there.
You only need to know the username, no old password necessary.

Hi Richard

You are a top man.

Simple when you know how and I am learning something new every day.

Thanks for your help.

Graham

 

[zEitEr]

For those resellers who has no admin access, you can always change an user email temporary to your own and follow a password recovery steps as user (login page). Of course lost password recovery function should be enabled at admin level.

 

[Richard G]

Of course lost password recovery function should be enabled at admin level.

Only if you want to provide this function. We have this disabled always for security reasons. It als prevents bruteforce attempts at this option.

 

[nobaloney]

How about changing the user email address to you (if you want to get the new password and not have the user get it) then resend welcome email with new password.

Seems easiest/best/fastest to me.

Jeff

 

[Richard G]

Seems easiest/best/fastest to me.

If you are a reseller yes. For an admin the change password option is much faster and easyer.

 

[nobaloney]

Easier to do? Possibly. But the entire procedure generally consists of not only changing the password, but documenting it to (perhaps yourself, and) the user. You can do the whole thing in a total of two clicks (one to check to send a new password, and one to actually send it) from the Reseller level.

Maybe a third click to get to the reseller level

Jeff

 

[Richard G]

I don't understand you. What do you want to explain to the user, if you set the users email address to yours as you said?
Documenting to it? Why?
And 2 clicks? Changing users email to yours, is already more then 2 clicks. Changing it back to yours takes some other actions.
And then changing and senting the new password. After that, notifying the user about the new password.
I don't see you doing all of those things in 2 clicks.

What I explained took:
1.) Use change password option
2.) change password and clik ok.
3.) Notify the user of the new password.

So I'm gaining time and effort on not changing users email adress to me, not changing it back to the user, not notifying or documenting(?) it to the user.

I'll like to see you beat that... did not see you doing it with your explanation. I only missed that this option was also in reseller level. Thought it was only in admin level without the need for an old password.

Or do you mean you can just send the user his old password by sending him the welcome message again? I don't get the "change email" thing you want to do.

 

[zEitEr]

How about changing the user email address to you (if you want to get the new password and not have the user get it) then resend welcome email with new password.

Yes, that seems to be the easiest if to compare with my suggestion to use lost password recovery function. Of course it should not be used in case you are admin on a server.

Anyway, I hope the password is now recovered, and the others who might find the thread have enough information how to do the things.

 

[nobaloney]

Richard,

Am I lost? I don't see a reason to change the password to mine; when I resend the welcome email a coy is always sent to the reseller as well as the user. i've been changing passwords this way for years.

Am I missing something?

Jeff

 

[Richard G]

Jeff I might be confused by this line you wrote:

How about changing the user email address to you (if you want to get the new password and not have the user get it) then resend welcome email with new password.

It says there "how about changing the user email address to you" and I don't understand why anybody should do that, if it's faster just to resend the welcome email or use the "change password" function on admin or reseller (which is also very quick to do).

 

[nobaloney]

I have a rather carefully crafted 'welcome' message and I don't call it a welcome message at all; we send it anytime a user needs information on his account. But some server administrators might want to send a personal message, or telephone the user. That's why I mentioned changing it to send to you. I don't mean to change the email address for the account, but rather to change it in the address list for the outging email.

Jeff

 

[Richard G]

Thank you for explaining, it's now clear to me what you mean.