16-22
User Guide for Cisco Secure Access Control System 5.4
OL-26225-01
Chapter16 Managing System Ad ministrators
Resetting the Administrator Password
Note If the administrator password on the AD or LDAP server is expired or reset , then ACS denies the
administrator access to the web interface.
Resetting the Administrator Password
While configuring administrator access settings, it is possible for all administ rator accounts to get locked
out, with none of the administrators able to access ACS from any IP address in y our enterprise. If this
happens, you must reset the administrator password from the ACS Config CLI. You must use the
following command to reset all administrator passwords:
access-setting accept-all
For more information on this command, refer to
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.4/command/
reference/cli_app_a.html#wp1893005.
Note You cannot reset the administrator password through the ACS web interface.
Changing the Administrator Password
ACS 5.4 introduces a new role Change Admin Password that entitles an administrator to change anot her
administrator’s password. If an administrator’s account is disabled, any other administrat or who is
assigned the Change Admin Password role can reset the disabled account through the ACS web interface.
This section contains the following topics:
Changing Your Own Administrator Password, page16-22
Resetting Another Administrator’s Password, page 16-23

Changing Your Own Administrator Password

Note All administrators can change their own passwords. You do not need any special roles to perform this
operation.
To change your password:
Step1 Choose My Workspace > My Account.
The My Account page appears. See My Account Page, page 5-2 for valid values.
Step2 In the Password field section, enter the current administrator password.
Step3 In the New Password field, enter a new administrator password.
Step4 In the Confirm Password field, re-enter the new administration password.
Step5 Click Submit.