Administration accounts

When the embedded database server is installed, two database accounts are created.

1. A superuser account that has all privileges throughout all databases:

   User name: root

   Password: digipassword

2. A database administrator account:

   User name: digipass

   Password: digipassword

   This account has full administration and access privileges to the OneSpan Authentication Server database (Identikey Server, by default). It is used by OneSpan Authentication Server to connect to the database. If you use a SQL or database administration tool to connect to the database, you can use this account.

For security reasons you should change the default passwords of these database accounts after the installation!

If you want to change the password, you can do this using the DBeaver database tool. After changing the password for the database administrator account, you need to update the ODBC settings for all connections of OneSpan Authentication Server.

To change the password of the database administration account with DBeaver

1. Launch DBeaver.
2. Connect to the OneSpan Authentication Server database using the root account.
3. Open a SQL Editor tab.

4. Execute the following SQL statement:

   ALTER USER 'db_username'@'hostmask' IDENTIFIED BY 'password';

   where:

   • db_username is the database account name, e.g. root. Note that you can have the same database account name for different hostmasks.
   • hostmask specifies the host where the respective user connects from, e.g. localhost for connections originating from the local host only or % for connections from any host.
   • password is the new password.
5. Launch the OneSpan Authentication Server Configuration Utility.

6. Change the password for the OneSpan Authentication Server database connection:

   1. Switch to the Storage tab.
   2. Select OneSpan Authentication Server in the ODBC Data Sources list and click Edit.
   3. Type the new password in the Password box.
   4. (OPTIONAL) Click Test Connection to verify the changed settings.
   5. Click OK to close the Edit ODBC Data Source Dialog.

7. Depending on the enabled scenarios, do the following for the Reporting and Auditing scenarios:

   1. Switch to the Scenarios tab.
   2. Select the respective scenario in the Available Scenarios list.
   3. Switch to the Audit ODBC Settings tab.
   4. Type the new password in the Password box.
   5. (OPTIONAL) Click Test Connection to verify the changed settings.

8. If you are using the database for auditing, change the password for the ODBC database audit method:

   1. Switch to the Auditing tab.
   2. Select Database in the Available Audit Methods list and click Edit.
   3. Type the new password in the Password box.
   4. (OPTIONAL) Click Test Connection to verify the changed settings.
   5. Click OK to close the Edit ODBC Audit Method Dialog.
9. Click OK to exit the Configuration Utility.
10. Click Yes to confirm restarting the OneSpan Authentication Server service.