The default username for TheHive is admin, and its corresponding default password is secret. These credentials are used for the initial login to the application.
Initial Login Credentials
Upon the first launch or installation of TheHive, a default user account is pre-configured to allow administrators to access the system and begin its setup. This initial account is crucial for configuring user roles, integrating services, and setting up security measures.
Here's a quick overview of the default login details:
| Field | Default Value |
|---|---|
| Username | admin |
| Password | secret |
Importance of Changing Default Passwords
While default credentials provide immediate access, it is critically important to change them immediately after the initial login. Leaving default passwords unchanged poses a significant security risk, as they are widely known and can be exploited by malicious actors to gain unauthorized access to your system.
Best Practices for Password Security:
- Change Immediately: The very first action after logging in with default credentials should be to change the password for the
adminuser. - Strong Passwords: Create a strong, unique password that includes a combination of uppercase and lowercase letters, numbers, and symbols. Aim for a length of at least 12-16 characters.
- Password Managers: Consider using a reputable password manager to generate and store complex passwords securely.
- Regular Updates: Implement a policy for regular password changes, or utilize multi-factor authentication (MFA) to add an extra layer of security.
- User Management: Once the
adminpassword is secure, create additional user accounts with specific roles and permissions as needed, following the principle of least privilege.
For more detailed information on TheHive's administration and initial setup, refer to the official documentation, which provides comprehensive guides on securing your instance and managing users: First Start - TheHive 5 Documentation.
