Changing CLI Admin Password

In newer Imperva On-premise Versions (I think that got introduced in Version 14), there are now two admin users – one for the GUI and one for CLI. This is causing some confusion as those are separate users with separate passwords. You can change the GUI Admin via the GUI with this well-know procedure:

SecureSphere provides an easy mechanism that enables you to change your password. It is recommended that passwords are changed on a regular basis. Passwords must conform to the rules set under Admin > System Definitions > Password Settings.

To reset your password:

1. In the Preferences workspace, select User Details. User details are displayed.
2. From the bottom of the User Details pane, click Change Password. The Change Password dialog box appears.
3. Type your old password.
4. Type a new password.
5. Re-enter the new password for confirmation.
6. Click Change. Your password is changed

(this is from the admin guide)

The CLI Users, you normally change via CLI-Tool impcfg. There are options to change the system accounts – but for unknown reasons not for the cli admin user.

According to Imperva Support, this needs to be done via linux command:

If you lost the CLI Admin-password you need to log on to the MX with root (this is only possible direct on the hardware or ESX) and then use:

passwd admin <password>

(If you have the existing password and just want to change it, you can establish an SSH Session and log in with the admin user and then change the password). Warning, the password here is shown in cleartext and could be retrieved by checking the command history!