Touch UI (The screen) - How to recover forgotten pin?

[Ethan]

Is there any way to do it? 

[LGNilsson]

Hard reset... 
You won't lose any sensors or any automation rules doing this.
http://wiki.securifi.com/index.php?title=Hardware_reset_button_-_Almond%2B_2014

[Ethan]

Seriously? Hard reset for that?
Put it in the danm settings page.... gah.

[LGNilsson]

It's a security feature, the same goes for most things.
That said, I guess you have a point, this isn't a phone so...
I'll bring it up with the software team.

[Ethan]

If you're already logged into the router settings where you can change everything else, not being able to see the screen pin is an annoyance, not a feature.

[Zimmie]

If you have authenticated with more secure credentials (i.e. a potentially long password), you should be able to reset less secure credentials. This way, people like me who use password managers and long, randomized passwords can easily reset the screen PIN without having to record it somewhere.

Of course, what I would really love to see is a command line with SSH key authentication and a good configuration system like Junos. Mmm. Maybe support for client-side certificates for web UI authentication. That tends to be bizarrely difficult to set up in a lot of modern browsers, though.

[LGNilsson]

Something along these lines? http://wiki.securifi.com/index.php?title=SSH_Access_-_Almond%2B_2014

[Zimmie]

Huh! Sure enough. I didn't think Dropbear had support for key-based authentication.

Of course, that still leaves the Junos-style CLI, but that should be easy, right?

Somewhat more seriously, I will have to experiment with the CLI some time. My Trapeze system works well enough, but configuration changes are a headache. That part is off-topic, though I wonder where the screen PIN is stored. Surely it could be overwritten with SSH access.

[reedog117]

Huh! Sure enough. I didn't think Dropbear had support for key-based authentication.

Of course, that still leaves the Junos-style CLI, but that should be easy, right?

Somewhat more seriously, I will have to experiment with the CLI some time. My Trapeze system works well enough, but configuration changes are a headache. That part is off-topic, though I wonder where the screen PIN is stored. Surely it could be overwritten with SSH access.

Not sure if you can overwrite it, but if you can SSH in, have you tried /etc/config/memory ?

[btosch]

I don't remember ever setting or using a pin and after randomly hitting the lock in the R070 clock app I seem to be locked out.  Default pin does not seem to work.

[btosch]

Reboot leaves me at a pin entry screen I have never seen before.  I guess I will have to look at the hard reset but still no idea how a non-default pin was set.

I do still have webUI access but I don't see any of the dropbear config.  Under the management tile I get Router Passwrod and SSH-Access Keys and thats it.

[btosch]

OK solved.  After ssh'ing in and looking at /etc/config/memory (thanks for that) I can see my pin is '0'.  And that works.  Still no idea how I would not have the default pin.

[dinoby]

Thanks for this. I don't remember ever setting a screen PIN and similarly got locked out when I hit the lock icon on the clock screen. Using pin '0' worked for me too.

[tristin]

The firmware update post needs to be fixed to indicate the default pin code is 0, not 1234. I had the same issue.

[LGNilsson]

The default pin is 1234, I've confirmed this with the software team. As to why some of you are ending up with it being 0, I don't know and I've informed them about this.
We're going to be adding an option to turn on/off the LCD password from the web UI, but please note that you still need to know the web UI password to be able to disable the LCD UI password from the web UI.