Question & Answer
Question
Why are you being prompted to change your password along with the message "You must change or re-encrypt your current local (not external) password" after an upgrade to 7.2.8?
Cause
Some users may encounter a password change prompt when they first log in to QRadar after an upgrade to 7.2.8. The prompt displays the message: "You must change or re-encrypt your current local (not external) password".
This prompt will be displayed if the password for this user was set in an version of QRadar before version 7.2.5 and encrypted using an encryption algorithm that is no longer used in version 7.2.8.
Note: When using Active Directory to authenticate and a password change is attempted, you may see the following message: "The current password you provided is not valid." In order to change or re-encrypt the password for such a user, authenticate using an admin user and follow the steps in the "User Management Screen" section below.
Answer
The password encryption algorithm that is used with QRadar was changed in version 7.2.5 to better align the product with current security standards. To comply with the strong encryption mechanism, QRadar can require passwords set in older versions and encrypted using outdated encryption standards to be changed or re-encrypted after an upgrade to version 7.2.8. There are two ways to update these passwords:
Change Password Prompt
Users can complete the on-screen password change form that is displayed when first logging in after the upgrade.
User Management Screen
An admin user can change the password for any users from the User Interface (UI) with the following steps:
- Go to Admin > User Management > Users.
- Select the user in question from the list.
- Click Edit.
- Enter the new password for the user in the User Details pane.
- Click Save.
Where do you find more information?
Was this topic helpful?
Document Information
Modified date:
16 June 2018
UID
swg21993119