Follow the instructions below to change your password:
- Click the user icon, and click CHANGE PASSWORD.
- Enter the required details as follows:
- Enter old password - Enter the current password.
- Enter new password - Enter a new password with at least six characters.
- Retype new password - Re-enter the new password.
- Click YES to change your password.
Why do I get the following warning: org.wso2.carbon.server.admin.module.handler.AuthenticationHandler - Illegal access attempt while trying to authenticate APIKeyValidationService?
After changing the default user password you might run into this error. If you do run into this error, follow the steps given below:
- Change the credentials stored in the
<APIKeyManager>
element of the<EMM_HOME>/repository/conf/api-manager.xml
file of the API Gateway node/s. Have you set the priority of the SAML2SSOAuthenticator handler higher than that of the BasicAuthenticator handler in the
<EMM_HOME>/respository/conf/security/authenticators.xml
file? If so, theSAML2SSOAuthenticator
handler tries to manage the basic authentication requests as well. Set a lower priority to theSAML2SSOAuthenticator
than theBasicAuthenticator
handler as follows:<Authenticator name="SAML2SSOAuthenticator" disabled="true"> <Priority>0</Priority> <Config> <Parameter name="LoginPage">/carbon/admin/login.jsp</Parameter> <Parameter name="ServiceProviderID">carbonServer</Parameter> <Parameter name="IdentityProviderSSOServiceURL">https://localhost:9443/samlsso</Parameter> <Parameter name="NameIDPolicyFormat">urn:oasis:names:tc:SAML:1.1:nameid-format:unspecified</Parameter> <Parameter name="ResponseSignatureValidationEnabled">false</Parameter> <Parameter name="AssertionSignatureValidationEnabled">false</Parameter> </Config> <!-- If this authenticator should skip any URI from authentication, specify it under "SkipAuthentication" <SkipAuthentication> <UrlContains></UrlContains> </SkipAuthentication> --> <!-- If this authenticator should skip any URI from session validation, specify it under "SkipAuthentication <SkipSessionValidation> <UrlContains></UrlContains> </SkipSessionValidation> --> </Authenticator>