How-to Reset Terraform Enterprise Administrator Password via Rails

Introduction

Expected Outcome

Regain access to the Administrator account in Terraform Enterprise.

Prerequisites

•  Terraform Enterprise: all releases

Use Case

• You are unable to login as the Administrator to your Terraform Enterprise instance.
• Promoting another account as Site Admin is not an option.

Procedure

1. SSH into your Terraform Enterprise instance.

2. Launch the Rails console.  

   sudo docker exec -it ptfe_atlas /usr/bin/init.sh /app/scripts/wait-for-token -- bash -i -c 'cd /app && ./bin/rails c'

   For Terraform Enterprise v202205-1 through v202308-1: 

   sudo docker exec -it tfe-atlas /usr/bin/init.sh /app/scripts/wait-for-token -- bash -i -c 'cd /app && ./bin/rails c'

3. For Terraform Enterprise v202309-1 and above running in consolidated_services mode: 

   sudo docker exec -it terraform-enterprise tfectl support console

4. Find the Administrator account and store it in the user variable. 

   user = User.find_by(username: 'administrator')

5. Change the password for the user. Password requires 10 characters minimum.

   user.password = 'yournewadminpass'

6. Save your changes and exit the Rails console.

   user.save!
    exit

7. You should now be able to login via the Terraform Enterprise Web UI with your new password. If two factor authentication was setup for the Administrator account you will be prompted for the code.

Additional Information

• Restoring Site Admin Access When No Accounts Have Access