Please be aware that the base linux version changed between Security Analytics version 7.3.1 (Fedora) and 7.3.2 (CentOS). Make sure you follow the correct steps.
These steps only work with hardware other than the Bluecoat/Symantec S500-series hardware. If you have forgotten the root password on one of the S500 appliances, the only way to recover is to reinstall the OS from scratch.
If the root password is forgotten or if you are no longer able to authenticate as root from the CLI, the only way to reset the root password is to log in using single user mode. This process requires console access to the appliance (via physically attached keyboard and monitor or via remote KVM).
Cannot log in as root from CLI.
Root password needs to be reset.
The following steps will boot the appliance into single-user mode, which will allow you to reset the root password or make any other modifications as directed by Technical Support. As part of performing these steps, you must agree to not install any scripts, packages, or other applications on the device, and to not modify or remove any Security Analytics installed components.
Version 7.3.2 and later
Version 7.3.1 and earlier
1. Access the GRUB boot loader
Connect a monitor and keyboard directly to the Solera appliance. Power up the device. During the boot up process, the console will show the GRUB boot-menu for approximately 2 seconds.
During that time, hit any key to interrupt the process. This will access the GRUB boot loader menu.
2. Modify the boot arguments
3. Change the root password (or make other modifications as directed by Support).
After the Solera appliance has completely booted, a basic shell prompt will be presented ([[email protected] /]#). At the prompt, type passwd and hit the Enter key. You will be prompted to enter the new root password twice. Please note that although the dialog on the screen mentions that the password must be 14 characters and contain certain characters, you may enter whatever password you like. If you need to change other passwords, like the admin user, you can do that using passwd admin
4. Reboot the appliance
Restart the system by entering reboot. The system will automatically reboot and the new root password will be in effect.