How to Reset Admin Password on Openfire version 4.3.1+

One of the most asked questions on this community forum is how to reset the Openfire admin password such that you can gain access to the web based administration console. Prior to release version 4.3.1, you had to go through the server setup process again to reset the admin password. This process was somewhat scary as people typically don’t trust that rerunning setup would not break your configuration settings.

Thanks to @ma1uta, there is now a simpler way with Openfire version 4.3.1 and higher. The steps are as follows.

  1. Stop Openfire
  2. Locate Openfire’s conf/openfire.xml and edit it with your favorite text editor.
  3. Add a tag within the root <jive> tag like so <oneTimeAccessToken>secretToken</oneTimeAccessToken>, where secretToken is whatever you want.
  4. Start Openfire
  5. For best results, use an incognito/private browsing web browser session to view the Openfire admin console http://ipaddress:9090 or https://ipaddress:9091
  6. Enter the one time token from step 3 into the webpage.
  7. Use the admin console to do what you need to do, which may include navigating to the admin user and updating its password.

Once you have used this oneTimeAccessToken to access the admin console, it is removed from the openfire.xml configuration file.


Somehow I knocked myself out of the chat. Currently Openfire will not open on the webpage http://localhost:909/login.jsp. I have removed the one time token line in the config file. Closed the editor and confirmed the token line has been removed and the webpage will not come up.

From the comments you made in the chat, it’s most likely that you unintentionally broke the XML structure in the file openfire.xml. Cam you restore it from a backup, and try again?

Buenas hice todo el proceso pero cuando igreso a la ip, me sale igual el login normal y no me sale el cuadro para colocar el Secretpassword, alguien me podria ayudar, lo necesito urgente.