Resetting the Root User Password

In TufinOS administration privileges are handled through the tufin-admin user. However, there are also instances where the root user is going to be required, such as:

• Recovering the password for the tufin-admin user

• Entering Rescue Mode (only relevant for TufinOS 3.100).

If faced with such a situation, you are going to need to enter rd.break mode and reset the password of the root user.

This procedure is also relevant for non-TufinOS Linux systems.

Reset the Root User Password

1. Reboot the operating system.

2. When the grub menu appears, make sure the first line (the number of lines depends on the operating system version) is selected and press e to edit.

   

3. Add the rd.break boot parameter.

   This parameter interrupts the boot process.

   If you are connected with a serial console cable, remove console=tty1.

   • For TufinOS 3.x: From the grub options, find the line that starts with linux16 and add rd.break to the end of the line.

     

   • For TufinOS 4.x: From the grub options, find the line that starts with linux and add rd.break to the end of the line.

     

4. Press Ctrl+X to reboot.

   The root file system is mounted in read only mode to /sysroot and must be remounted with read/write (rw) permissions.

5. Enter mount -o remount,rw /sysroot.

   After remounting, you are going to need to switch to chroot jail so that that /sysroot is used as the root of the file system. This is required so that any further commands you run will be in regards to /sysroot.

6. Enter chroot /sysroot.

   

7. To reset the password of the root user, enter passwd.

8. Enter the new password and then retype it.

   You have updated the password of the root user.

9. To exit the chroot jail environment and reboot the system, enter Exit twice.

   Once the system reboots, you will be able to access the root user account with the password you created.