How to change the password expiration for GUI-based user accounts in TIBCO LogLogic LMI

Products	Versions
TIBCO LogLogic Log Management Intelligence	4.2.0 and higher

Description

You can control when users' passwords expire on an individual basis by directly modifying the database.

Note: As of version 4.6.0, the Web UI has the ability to perform Password Control (Administration->System Settings->Password Control). The Web UI method sets password privileges on a global basis only. That means you will not be able to control password timeouts on a per user basis from the Web UI. The procedure below only applies if the Password Control feature is not enabled. If Password Control is enabled the following settings will be ignored.

Issue/Introduction

This article describes how to change the password expiration value in the database, enabling the Administrator to dictate when users have to change their passwords.

Resolution

The default timeout period is 30 day. To change the default:

1. SSH to the appliance and login as ”toor”.
2. Run these commands:
$ mysql
mysql> use logappconfig;
mysql> select loginName, lastPasswordChangeDate, passwordExpirationHours from admUser;

This will display the following:
Current database: logappconfig
+--------------------+------------------------+-------------------------+
| loginName          | lastPasswordChangeDate | passwordExpirationHours |
+--------------------+------------------------+-------------------------+
| admin              | 1176326704450          | 720     |
| RemoteUserTemplate | NULL                 | 720     |
| tfarley          | 1176473552948          | 720       |
| Jmicali            | 1176403221529          | 720       |
| ffermin            | 1176858012693          | 720       |
| pweinberg          | 1176468930692         | 720       |
| jledbetter         | 1176473084208        | 720       |
| jnormand           | NULL                 | 720       |
| khourihan          | 1176768703307        | 720     |
| jchan              | 1176897159654      | 720       |
| dream              | 1177035242536      | 720         |
| rsprong            | 1177079799099      | 720     |
+--------------------+------------------------+-------------------------+

12 rows in set (0.00 sec)

3. Now execute this query:
mysql> update admUser set passwordExpirationHours=<TIME VALUE> where loginName=<USER NAME>'';

Example:
mysql> update admUser set passwordExpirationHours=9999 where loginName='admin';

4. To check that the changes have been made, run this command:
mysql> select loginName, lastPasswordChangeDate, passwordExpirationHours from admUser;

+--------------------+------------------------+-------------------------+
| loginName          | lastPasswordChangeDate | passwordExpirationHours |
+--------------------+------------------------+-------------------------+
| admin              | 1176326704450          | 9999     |
| RemoteUserTemplate | NULL                   | 720         |
| tfarley            | 1176473552948          | 720                     |
| Jmicali            | 1176403221529          | 720                     |
| ffermin            | 1176858012693          | 720                     |
| pweinberg          | 1176468930692          | 720                     |
| jledbetter         | 1176473084208          | 720                     |
| jnormand           | NULL                   | 720                     |
| khourihan          | 1176768703307          | 720                     |
| jchan              | 1176897159654          | 720                     |
| dream              | 1177035242536          | 720                     |
| rsprong            | 1177079799099          | 720         |
+--------------------+------------------------+-------------------------+
12 rows in set (0.00 sec) 5. Exit from mysql:

5. Repeat for other accounts.

6. Exit mysql using the following:
mysql> exit

Welcome to "KB Articles"