Docs/quick-docs
2
0
Fork 0
Code Issues 48 Pull requests 1 Projects Releases Packages Wiki Activity Actions
quick-docs/modules/ROOT/pages/reset-root-password.adoc

197 lines
5.4 KiB
Text
Raw Blame History

= How to Reset the root Password
The Fedora docs team
:revnumber: F36
:revdate: 2022-01-10
:category: Administration
:tags: Password
[abstract]
A root password may be set up while installing Fedora Linux, although it is now suggested to leave the root account locked and use `sudo`. This article describes how to proceed if you have used a root password, but for some reason you can no longer access it.
There are two common methods to reset the root password if it is forgotten or lost.
* In Rescue Mode
* Using a Fedora Live Media (USB/DVD/CD)
== How to reset the root password in Rescue Mode
[NOTE]
====
Changing passwords as root will not prompt for the old password.
====
While booting the system, the xref:grub2-bootloader.adoc[GRUB2] menu will be displayed. To boot the system into rescue mode using `bash` follow these steps:
. Select the boot entry you wish to edit with the arrow keys.
. Select the entry you wish to edit by pressing *e*.
. Use the arrow keys to go to select the line beginning with `linux`, `linux16`, or `linuxefi`.
. Go the the end of that line and include a space and the following `rw init=/bin/bash`.
+
[NOTE]
====
If your disk is encrypted, you may need to add `plymouth.enable=0`[NOTE]
====
. Press *Ctrl-x* or *F10* to boot the entry
. Run the command:
+
[source,bash]
----
passwd
----
+
You will be prompted to enter the new root password twice.
. Restore the SELinux context and permissions with:
+
[source,bash]
----
touch /.autorelabel
----
+
[WARNING]
====
If you do not restore the SELinux permissions, the boot process may fail.
You may have to do a hard-reboot and start back at step 1.
====
. Reboot the machine with:
+
[source,bash]
----
/sbin/reboot -f
----
. As the boot (GRUB) menu appears (same as the first step), again select the boot entry you want to use, press *e*, and add the `enforcing=0` option to the end of the command line. This will temporarily set SELinux in permissive mode, which will allow the relabeling process to proceed. Then, boot the modified entry.
The system may take a moment to boot while SELinux relabels its permissions on the filesystem.
If you see the Plymouth boot screen you can press the `ESC` key on your keyboard to view the SELinux progress.
Once it is complete, your system is ready and your root password has been successfully changed. Upon next reboot, the `.autorelabel` file will be gone and SELinux will be set to previous behavior.
For more information about SELinux states and modes, see xref:selinux-changing-states-and-modes.adoc[Changing SELinux States and Modes].
[[sect-reset-password-using-the-fedora-live-media]]
== How to reset the root password with a Fedora Live Media
[NOTE]
====
To _download_ and create a live USB of Fedora Workstation, follow the instructions on the xref:creating-and-using-a-live-installation-image.adoc[Fedora USB Live Media Quick Doc].
__For additional information__, specifically about live media using BTRFS, see also
xref:grub2-bootloader.adoc#_restoring_the_bootloader_using_the_live_disk[Restoring the bootloader using the Live disk]
====
. Boot the Live installation media and choose `Try Fedora`.
. From the desktop, open a terminal and switch to root using `su` (the system will not ask for a password).
. To view your hard drive device nodes, enter `df -H` into the terminal.
For this example we will use `/dev/sda1` for the `/boot` partition and `/dev/sda2` for the root `/` partition.
+
If you are using LVM partitions, type: `sudo lvscan` and note the `/dev` path of your root partition.
For this example we will use `/dev/fedora/root`.
. Create a directory for the mount point (use the `-p` option to create subdirectories):
+
[source,bash]
----
mkdir -p /mnt/sysimage/boot
----
. Mount the `/` (root) partition (be sure to use the actual device node or LVM path of your root `/` partition):
+
To mount root on a *standard partition* scheme enter:
+
[source,bash]
----
mount /dev/sda2 /mnt/sysimage
----
+
To mount root on an *LVM partition* scheme enter:
+
[source,bash]
----
mount /dev/fedora/root /mnt/sysimage
----
. Continue the process by mounting `/boot`, `proc`, `/dev`, and `/run` with:
+
[source,bash]
----
mount /dev/sda1 /mnt/sysimage/boot
mount -t proc none /mnt/sysimage/proc
mount -o bind /dev /mnt/sysimage/dev
mount -o bind /run /mnt/sysimage/run
----
. `chroot` to the mounted root partition with:
+
[source,bash]
----
chroot /mnt/sysimage /bin/bash
----
. Change the root password:
+
[source,bash]
----
passwd
----
. Exit out of chroot with:
+
[source,bash]
----
exit
----
+
and exit out of the terminal.
. Reboot your system and boot from the hard drive.
Congratulations, your root password has been successfully changed.
[[sect-additional-troubleshooting]]
== Additional Troubleshooting
. If you cannot enter rescue mode because you forgot the Firmware/BIOS password here are some options:
.. Refer to your computer's documentation for instructions on resetting the Firmware/BIOS password in CMOS memory.
.. Temporarily move the system hard disk to another machine, and follow the procedures above to reset the root password.
. If you have set a password for your boot loader, refer to xref:creating-and-using-a-live-installation-image.adoc[Creating and Using a Live Installation Image].
. If you want to reset the boot loader password, refer to the instructions on how to link:++https://fedoraproject.org/wiki/Reset_Bootloader_Password++[Reset the Bootloader Password].
Reference in a new issue View git blame Copy permalink