Skip to content
Kong Logo | Kong Docs Logo
search
  • We're Hiring!
  • Docs
    • Kong Gateway
    • Kong Konnect
    • Kong Mesh
    • Plugin Hub
    • decK
    • Kubernetes Ingress Controller
    • Insomnia
    • Kuma

    • Docs contribution guidelines
  • Plugin Hub
  • Support
  • Community
  • Kong Academy
Get a Demo Start Free Trial
  • Kong Gateway
  • Kong Konnect
  • Kong Mesh
  • Plugin Hub
  • decK
  • Kubernetes Ingress Controller
  • Insomnia
  • Kuma

  • Docs contribution guidelines
  • 3.3.x (latest)
  • 3.2.x
  • 3.1.x
  • 3.0.x
  • 2.8.x
  • 2.7.x
  • 2.6.x
  • Older Enterprise versions (2.1-2.5)
  • Older OSS versions (2.1-2.5)
  • Archive (pre-2.1)

github-edit-pageEdit this page

report-issueReport an issue

enterprise-switcher-iconSwitch to OSS

On this pageOn this page
  • Passwords and RBAC Tokens
  • How to Reset a Forgotten Password in Kong Manager
  • How to Reset a Password from within Kong Manager
  • How to Reset an RBAC Token in Kong Manager
Kong Gateway
2.8.x
  • Home
  • Kong Gateway
  • Configure
  • Auth
  • Kong Manager
  • Reset Passwords and RBAC Tokens in Kong Manager
You are browsing documentation for an outdated version. See the latest documentation here.

Reset Passwords and RBAC Tokens in Kong Manager

Passwords and RBAC Tokens

For authentication, Kong uses two different credentials for Admins:

  1. An Admin uses a password to log in to Kong Manager.
  2. An Admin uses an RBAC token to make requests to the Kong Admin API.

If (and only if) using Basic Authentication, an Admin may reset their password from within Kong Manager. Since LDAP and OIDC Authentication imply that an organization stores and manages passwords outside of Kong, password reset is not possible with either type.

Since a hash of each RBAC token is stored in Kong, then regardless of the Authentication option selected, an Admin may reset their RBAC token from within Kong Manager. Note that to support confidentiality, RBAC tokens are hashed and cannot be retrieved after they are created. If a user forgets the token, the only recourse is to reset it.

How to Reset a Forgotten Password in Kong Manager

Prerequisites:

  • enforce_rbac = on
  • admin_gui_auth = basic-auth
  • SMTP is configured to send emails

Steps:

  1. At the login page, click Forgot Password beneath the login field.
  2. Enter the email address associated with the account.
  3. Click the link from the email.
  4. Reset the password. Note that you will need to provide it again immediately after the reset is complete.
  5. Log in with the new password.

How to Reset a Password from within Kong Manager

Prerequisites:

  • enforce_rbac = on
  • admin_gui_auth = basic-auth
  • admin_gui_session_conf is configured.
  • Already logged in to Kong Manager

Steps:

  1. At the top right corner, after hovering over the account name, select Profile.
  2. In the Reset Password section, fill in the fields and click the Reset Password button.

How to Reset an RBAC Token in Kong Manager

Prerequisites:

  • enforce_rbac = on
  • admin_gui_auth is set.
  • admin_gui_session_conf is configured.
  • Already logged in to Kong Manager

Steps:

  1. Open the dropdown from your account name, then select Profile.
  2. In the Reset RBAC Token section, click Reset Token and confirm the reset.
  3. To copy the token, click Copy.
Thank you for your feedback.
Was this page useful?
  • Kong
    THE CLOUD CONNECTIVITY COMPANY

    Kong powers reliable digital connections across APIs, hybrid and multi-cloud environments.

    • Company
    • Customers
    • Events
    • Investors
    • Careers Hiring!
    • Partners
    • Press
    • Contact
  • Products
    • Kong Konnect
    • Kong Gateway
    • Kong Mesh
    • Get Started
    • Pricing
  • Resources
    • eBooks
    • Webinars
    • Briefs
    • Blog
    • API Gateway
    • Microservices
  • Open Source
    • Install Kong Gateway
    • Kong Community
    • Kubernetes Ingress
    • Kuma
    • Insomnia
  • Solutions
    • Decentralize
    • Secure & Govern
    • Create a Dev Platform
    • API Gateway
    • Kubernetes
    • Service Mesh
Star
  • Terms•Privacy
© Kong Inc. 2023