Password retrieval...PLEASE

[Rich@vtws]

Hello everyone...

After many hours of trying I finally managed to get the software to install properly but I'm inputting what I am almost positive , that I used for my user name and passwrd setting it up and I can't get in

Is there a way to retrieve my user name and passwrd???

[wagnerbl]

Hello everyone...

After many hours of trying I finally managed to get the software to install properly but I'm inputting what I am almost positive , that I used for my user name and passwrd setting it up and I can't get in

Is there a way to retrieve my user name and passwrd???

Nope, sad but true, the password is hashed on md5 (if you can hack this send a pm i have some site destroing to do ).

[dhsg]

Any chance of explaining what password is hased on md5 means? I am sensing that it is not good, I have similiar problem where I only have one user (me=admin) and for some reason my password has changed or forgooten or something. Can I change the hash password or something? Am I stuffed? Apologies for lack og understanding in advance.

Cheers

[wagnerbl]

Hashing of a password means that you will not have the exact password in the database, you will have some sort of "demonstration", let me give you an example.
Let's say i have the stupidest password of them all 1234 and want to save it on sugar, it will go on the db as 81dc9bdb52d04dc20036dbd8313ed055 so even you you can see the passwords on the database you still need to guess the correct one.

[dhsg]

Sorry to be a pain, but I don't know anyone else to learn this. So essentially there is no way to 'retrieve' or 'change' a password in a MySQL table, I assume this is some sought of security protection so even if hackers get into MySQl you data is still protected? To present a opposing argument, the drawback is you can potentially be locked out from your own data and may have to wipe it?

[jlz78]

Hi,

I'm not sure of that but if you search for php code that return you a md5 password when you enter the password in text, you can cut and paste the MD5 password with phpmyadmin to modify the password of the administrator? I remenber having testing it but not sure if it works

[stevec]

If you have access to the mysql database, open it with a tool your are comfortable with (eg, navicat etc).
empty the 'user_password' and 'user_hash' fields for the username effected in the users table.

A few options.
1. If you know of another user in the table that you have the password for, just copy their user_hash to the user_hash field for your 'lost' user.

2. Alternatively, change the is_admin field to 'on' for any account that you know the password for - they will now have admin rights to reset your lost password for your original account.

3. Finally, if there is no other account, wipe out the user_password and user_hash for your user, go to http://md5-hash-online.waraxe.us/ and generate a md5 hash for a new password. Paste this into the user_hash field, then that is your new password.

[dhsg]

Thanks guys, your help has been invaluable, much kudos and karma to you

Quick note, That info was so useful and so important that I believe it really should be in a FAQ or the user guide. I am sure I am not going to be the last person to lock themselves out of their own Sugar install.

[netstep]

3. Finally, if there is no other account, wipe out the user_password and user_hash for your user, go to http://md5-hash-online.waraxe.us/ and generate a md5 hash for a new password. Paste this into the user_hash field, then that is your new password.

Worked PERFECTLY!
Glad I wasn't the only knucklehead who misplaced my admin pw.

[ashiwebi]

I am new in sugarcrm. Is there any module or software thhrough which any user who forget his/her password can reset its account once again.Thanks in advance.Forgive if posted at wrong place.