How to Reset Sophos UTM Passwords (WebAdmin, Root and Loginuser)


Scott Glew

Scott Glew

So you can't login to the Sophos UTM WebAdmin interface anymore. It happens. Perhaps you've made a configuration change and locked yourself out, or perhaps you've just forgotten your password. I locked myself out a couple of times when playing around with the new 2 Factor Authentication feature in the Sophos UTM 9.2 Beta.  Don't worry, here are the steps to reset your password.

You'll first need a direct console into Sophos UTM. For hardware appliances, plug in a monitor and keyboard, or for Virtual Appliances open up your virtualization system's management console for the Virtual Machine.

Sophos UTM Console

Once you have a console open, try to log in as the root user.

Sophos UTM Root Login Incorrect

Yep, locked out alright! So let's go ahead and reset the root user password. Then we can go about resetting the password for the WebAdmin user as well.  If you can login as root, jump to Resetting the Web Admin Password below.

Reset Sophos UTM's Root User Password

To reset the root password:

  1. Ensure you have a monitor and a keyboard connected to the Sophos UTM and restart the UTM.

  2. Press the ESC key as the Sophos UTM starts to boot. You'll soon see the GNU GRUB screen:

    Sophos UTM GNU GRUB Loader

  3. Ensure the current Sophos UTM version is highlighted (should be the top option).  Do NOT select the ones that say 'previous' or 'rescue'.

  4. Press the 'e' key (don't press Enter!).

  5. Use the arrow keys to highlight the second option that starts with the word 'kernel':

    Sophos UTM Kernel Boot Option

  6. Again, press the 'e' key on the keyboard

  7. The cursor should be at the end of a string of text. Add this to the end:


    Sophos UTM init=/bin/bash

  8. Press Enter to return to the previous screen, then press the 'b' key on the keyboard to reboot the Sophos UTM.

  9. Once the UTM boots, the cursor will be at a command prompt

    Sophos UTM Command Prompt

  10. Now we finally get to reset the password. Type: passwd loginuser

  11. Enter and re-enter a new password for the 'loginuser' account.

  12. Type: passwd root

  13. Enter and re-enter a new password for the root account.

    Sophos UTM Resetting the Root Password

  14. Press Ctrl+Alt+Del to reboot the Sophos UTM.

You have now reset both the loginuser and root passwords. Once the UTM has rebooted, check that the root password works by logging in as the root user.

Sophos UTM Successful Root Login

Did you know: Fastvue Sophos Reporter produces clean, simple, web usage reports using log data from your Sophos UTM that you can confidently send to department managers and HR team. Why use Fastvue over Sophos iView?

Reset Sophos UTM WebAdmin Password

Now we have regained access to the root user login, we can reset the WebAdmin password.

  1. Ensure you are still logged in as root as per the last step above.

  2. Type cc at the prompt. This will take you to another prompt starting with MAIN >

    Sophos UTM CC Command

  3. Type RAW. This will switch you to RAW mode.

    Sophos UTM RAW Mode

  4. Type system_password_reset

    Sophos UTM system_password_reset

  5. Browse to the WebAdmin Interface. You will notice it is now asking you to set the password.

    Sophos UTM WebAdmin Password Reset

  6. Enter your new password into each box and hit Apply. You'll then be directed to the usual WebAdmin login page

    Sophos UTM WebAdmin Login Page

  7. Enter your shiny new credentials, and if everything went to plan, you should be logged in!

You can also checkout Sophos' own guide on how to Recover access to your Sophos UTM in the event of password loss.

I hope this helps anyone else out there that has locked themselves out of their Sophos UTM box!

Take the pain out of reporting on Web Usage and Network Traffic.

Now that you're logged in, why not make your life easier and setup Fastvue Sophos Reporter? Fastvue Sophos Reporter consumes syslog data from Sophos UTM (SG) and Sophos XG Firewalls and produces clean, simple, web usage reports that you can confidently send to department managers and HR team. Automate reports and get the job of reporting on web usage off your desk and into the hands of people that need it. Download the 30 day free trial today!

Take Fastvue Reporter for a test drive

Download our FREE 30-day trial, or schedule a demo and we'll show you how it works.

  • Share this story

Filtering and Forwarding Sophos UTM Syslog Data with Syslog-ng

This article explains how to configure syslog-ng to filter and forward Sophos UTM syslog data to multiple syslog servers with different data requirements.

How to Configure Multiple Site-to-Site SSL VPNs with Sophos UTM

This article illustrates how to configure site-to-site SSL VPNs for a multi-hop, Grandparent, Parent, Child network using Sophos UTM.