AppDynamics switched from Semantic Versioning to Calendar Versioning starting in February 2020 for some agents and March 2020 for the entire product suite.

    Skip to end of metadata
    Go to start of metadata

    The Manage Users and Groups page describes how to manage users in the Controller UI. This page describes advanced user-management features for on-premises Controllers.  

    Modifying User Session Timeout

    The Controller logs users out of Controller UI sessions after 60 minutes of inactivity by default. For an on-premises Controller, it's possible to modify the default timeout value, as follows:

    1. As the AppDynamics root user, log in to the Administration Console.

    2. Find and set the values for these properties:

      • http.session.inactive.timeout: The amount of time without a client request to the Controller after which the user session times out and the user will need to log in again to continue. The default is 3600 seconds (60 minutes). 
      • ui.inactivity.timeout: The amount of time without user activity in the Controller UI after which the user session times out and the user will need to log in again to continue. The default is -1 (disabled). 

    Setting a System Notification Message

    You can have a message appear as a dialog box after a successful login. The user will need to close the dialog box to continue. To set a login message, enter the text as the value of the system.user.notification.message Controller setting in the Administration Console. Clearing the text for the setting suppresses the appearance of the dialog. 

    root User and Account Owners

    The root user is a built-in Controller user with global administrator privileges in the Controller environment. Only the root user can access the System Administration Console, the web page where you can create and manage accounts in multi-tenant Controllers and configure global Controller settings in both single- or multi-tenant Controllers. 

    The root user can be thought of as a superuser for the Controller. Unlike other types of users, you cannot remove the root user account or create other superuser accounts in the Controller. The password for the root user is first set at installation time, but you can change it after installation by following the steps below

    While the root user has global administrative privileges, account administrators act as administrators only within individual accounts in a multi-tenant Controller. It's typically the role of the root user to create accounts and an initial administrator for the account, and the role of each account administrator to create additional users within the account.  

    For information, see Roles and Permissions and Manage Users and Groups.

    Change the Controller root User Password

    You can change the root user password from the AppDynamics Administration Console page.

    To change the root user password
    1. In a browser, log in to the administration console as described in Access the Administration Console.
    2. Click the gear icon ()  and choose My Settings.
    3. Click Edit > Change Password.
    4. Type the new password for the root user in the New Password and Repeat New Password fields.
    5. Click Save

    Logging in to the Administration Console requires you to have the root user password. If you do not have the root user password and need to reset it.

    Reset root User Password

    If you have lost the AppDynamics root user password for your installation and need to reset it, follow these steps:

    1. From the command line, change to the Controller's bin directory. For example, on Linux:

      cd <controller_home>/bin
    2. Use the following script to log in to the Controller database of the Controller;
      • For Windows: controller.bat login-db
      • For Linux: sh login-db
      You will see a MySQL prompt.
    3. After running the script, you will be prompted to enter a password. Enter the root password for the Controller database.

    4. You will be taken to a MySQL prompt. From the prompt, enter the following SQL command to get root user details:

      select * from user where name='root' \G;
    5. Use the following SQL command to change the password: 

      update user set encrypted_password = sha1('<NewPassword>') where name = 'root';

      The hash for the password will be upgraded to PBKDF2 when you log in.

    6. Restart the Appserver.

    For information on setting the database root user password, see Controller Data and Backups

    Change the Glassfish admin User Password

    The Controller uses the built-in administrator account in the underlying GlassFish application server. Changes to the GlassFish admin user password must be made in GlassFish and the Enterprise Console. 

    Change the Password in GlassFish

    1. Run the change-admin-password subcommand in remote mode, for example:

      asadmin> change-admin-password --user <username>
    2. Enter the existing password and new password when prompted. 

    3. Restart the Controller using the Enterprise Console. 

    Update the Password in the Enterprise Console

    The Enterprise Console connects to your underlying GlassFish administration server via the GlassFish admin password during Controller upgrades. If you change the GlassFish admin user password, you need to update the password in the Enterprise Console as well to ensure successful Controller upgrades. 

    To update the GlassFish admin user password in the Enterprise Console, see the following steps:

    1. Login to the Enterprise Console and select the desired platform. 

    2. Select Configurations > Controller Settings > Appserver Configurations

    3. In the Basic tab, find Glassfish Admin Password. Enter the new password

    4. Reenter the new password in Confirm Glassfish Admin Password

    5. Click Save

    The password change takes immediate effect.

    Change the Controller Database Root User Password

    Downtime is required to change the Controller database root user password. If you have installed a Controller HA pair, you must disable auto-failover to avoid an accidental failover while changing the password. For more details about disabling auto-failover, click Automatic Failover.

    To change the Controller database root user password:
    1. Log in to the Controller host. From a command line, enter:

      cd <controller_home_dir>
    2. To stop the App Server and the database, enter:

      bin/ stop

      If you are using MS Windows, you must use the Windows services to stop the Controller.

    3. To start the database in insecure mode, enter: 

      bin/controller.{sh|bat} start-db insecure
      The insecure option starts the database without password requirements. Use this option only to reset the password for the database. The option is similar to starting MySQL with the --skip-grant-tables option.
    4. To log in to the database, enter: 

      bin/controller.{sh|bat} login-db insecure
    5. Use MySQL to run the following commands:
      1. To specify the Controller database, enter: 

        use mysql;
      2. To reload the MySQL grant tables, enter: 

      3. To determine your MySQL version, enter:

        select version();
      4. Based on which MySQL version you are using:
        MySQL 5.5 version: Configure the new password for the root user by entering:

        update mysql.user set password=password('<new-password-here>') where user like 'root%';

        MySQL 5.7 version: Configure the new password for the root user by entering:  

        update mysql.user set authentication_string=password('<new-password-here>') where user like 'root%';
      5. To reload the MySQL grant tables, enter: 

      6. To exit MySQL, enter: 

    6. To stop the database, enter: 

      bin/controller.{sh|bat} stop-db
    7. To start the App Server, enter: 

      bin/ start


      If you are using MS Windows, you must use the Windows services to start the Controller.


       You need to change the password on both of the Controller HA pairs.

    8. To update the Controller database root password and ensure that the Enterprise Console is aware of the new password:

      1. Log in to the Enterprise Console and select the desired platform. 

      2. Select Configurations > Controller Settings > Database Configurations
      3. Enter the new password in Controller DB Root Password
      4. Reenter the password in Confirm Controller DB Root Password
      5. Select Save

    The password change takes immediate effect. 

    If you previously disabled auto-failover, you should now enable it.

    • No labels