Change admin password

    I ordered and received the manual, but I'm still having a problem with security.

    I open Modeller - select the Demo database - select User Manager.

    I now have a display with #_USER_, #_GROUP_, ect on the left and #_USER_USER_PROPERTIES, ect on the right.

    I double click #_USERS_ on the left.

    I get a display listing the current users on the left side. I can add users. However, there is no display on the right side.

    Same for Groups and Roles. I only have the left side of the display.

    How do I get the right side of the display for users, groups, roles?
    Hi Terry,

    you see no right side because there is no right side. The right side of the modeller is only used to show consolidated elements. And the user dimensions have no such elements.

    If you want to change some properties like password you have to insert a view in an excel sheet. Have a look at chapter 10.2 of the manual.
    Andreas Mueller
    FORECAST Unternehmensplanungen GmbH, Berlin, Germany
    www.forecast.de
    I cannot change the admin password at all.
    Using the current downloaded Palo (Web).
    Is there a workaround for changing it?
    ---

    installed:
    - in March installed: PaloSuiteIntegrated_ramp_up.exe
    - yesterday installed: PaloSuiteIntegratedOS.exe
    (this uninstalled the older version, then installed itself anew)

    problem is:
    There's still the default admin account with default password.
    AND IT WILL NOT GO AWAY... ;)


    I've tried solving it like this:
    Using Palo Web, Logging on with the admin account
    then:
    - User Manager
    -- users
    --- all users
    ---- double-click: admin
    ----- the field "Password" displays the password, but it's gray:
    and I CANNOT enter anything in the Password-Field
    (so I cannot change it)

    thus, I tried:
    - added a new user named "admin2", made him member of the group "admin"
    - saved that
    (message appears - ... successfully... )
    - logged on as admin2
    (logon works OK)
    -- User Manager
    --- users
    ---- all users
    ----- double-click: admin
    ----->error persists
    (field "Password" of admin is grayed out - cannot enter anything)
    -- User Manager
    --- users
    ---- all users
    ----- double-click: admin2
    ------ I can edit the field "Password": changing the password
    ------- click button "save"
    (Message appears ...successfully...)
    - LOGOUT

    - logged on as admin2 with the NEW password
    (OK, logon works)
    - User Manager
    -- users
    --- all users
    ---- double-click: admin
    ----- click tab: "Group Members"
    ------ removed the group "admin"
    ------ click button "Save"
    ------- ERROR message pops up: "Dabase error: Can not write data"
    (->I guess that's: Cannot write data ;)

    So....
    how I can I make this more secure???
    Either change the admin account, or get rid of it, or likewise???
    Please HELP!;-)
    logon (Palo Web) with default admin (from a remote computer)
    - User Manager
    -- Users
    --- There's a list-box on the left-hand side "Connection:"
    ---- change that from "<internal>" to "Palo local"
    (nothing much happens - just like a short blink)
    --- All Users
    ---- double click "admin"
    ----- now the Field "Password" is no longer grayed out
    ------ changed the password
    ------ Button: Save
    ------- ERROR message pops up: Database error "Can not write data"
    (I guess that's: Cannot write data?;-)

    Post was edited 1 time, last by “arny” ().

    now, the weird thing is:
    - logged out
    - logged on with the NEW password

    (Will wonders never cease to exist? The new password works, though it was not written???)

    - User Manager
    -- Users
    --- All Users
    ---- double click "admin"
    ----- the Field "Password" shows the new password
    (grayed out)
    The admin password entry field is disabled to make sure you do not "casually" change this password. The problem is that the admin password is also needed by the Web server and Core because they us Palo OLAP as metadata storage. So, when changing the admin password, you also need to change it in the files ./httpd/app/etc/config.php and ./core2/palo_wss3_config.xml (windows paths).

    You can change the admin password in Palo itself via Pasting a view of the #_USER_USER_PROPERTIES cube of the System database. but when doing so, make sure to immediatly change it in the mentioned files as well.
    Hi all,

    maybe it's a bit out of topic, but I try to post here my issue regarding password management in palo.


    Situation:
    Palo password are stored as clear text in the system database, and as a default only admins can see and change password.

    Issues:
    In general, pw managment has two basic requirements:

    1) Admins should not be able to see passwords, they should only be able to delete existing ones and set new (temporary) passwords to be communicated to the user;

    2) the user should be able to change his/her password by itself without having to ask the admin (and the admin should not be able to see the new password).



    Am I the only one that has this requirements? How do you deal with them?


    Thanks in advance,

    RQ
    Hi realquo,

    this is a valid question indeed. I once solved that in a project through the user interface which allowed the user to change his password, the application using a system user with admin access.

    Still, that does not cover the requirement that admins should not be able to read passwords. You might add this in the Jedox bug tracker as a new feature, maybe Jedox product management has an opinion on this.

    Regards
    Holger