Recovering admin password? Can't login: Credentials were rejected

Skip to first unread message

Jun 25, 2014, 9:45:10 PM6/25/14
Has anyone encountered a situation where 
% cf login -u admin -p <value_from_uaa> fails with "Credentials were rejected, try again"?
If I run with tracing, it is in fact getting a 401, Unauthorized. And if I login to the UAA vm I can see the authentication failing. One aggravating factor being that if you have so many failed logins within a certain interval, the user gets locked out (for how long, I do not know).
A possibly related (but possibly not) issue is that when I'm logged in as a user that has the ORG_MANAGER role for the organization, the command
% cf org-users <org>
failed with ORG MANAGER FAILED. Failed fetching org-users for role
Server error status code 403, error code: access_denied, message: invalid token does not contain resource id (scim) ORG MANAGER
Is there any "easy" way to recover the admin password? I can only imagine that things are going to start failing in even greater ways if the stored admin password doesn't work.

Aristoteles Neto

Jun 25, 2014, 9:51:11 PM6/25/14
On the deployment manifest, set 
        override: true
      - admin|password|scim.write,,openid,cloud_controller.admin,,clients.write

I think this will allow you to reset your admin password.

Re: cf org-users, from memory only admin users had that capability (could be wrong). There was a discussion around making it possible for org-members/managers to be able to see users in their org, but not sure what the state of it is.

Aristoteles Neto

You received this message because you are subscribed to the Google Groups "Cloud Foundry Developers" group.
To view this discussion on the web visit

To unsubscribe from this group and stop receiving emails from it, send an email to

Reply all
Reply to author
Message has been deleted
0 new messages