Internal Authentication
Internal authentication uses manually managed user accounts stored within Cortex itself. This is useful when SSO is not available or not required.
First Login
When you first enable Internal authentication, sign in using the built-in administrator account:
- Username:
cortex.admin - Password:
cortex.admin
You will be prompted to change the password immediately on first login.
From there, navigate to Admin > User Management to add any additional accounts.
Managing User Passwords
From the User Management page you can set a user's password by editing their account. You can also check the box to force them to change their password on next login, which gives them the same password reset prompt you saw when first logging in.
As a best practice, when resetting a user's password, set it to a temporary value you can share with them and check the box to force a reset on their next login.
At this time, users cannot reset their own password if they are unable to log in. An admin user must reset it for them from the User Management page.
Disabling the cortex.admin Account
The cortex.admin account cannot be permanently deleted - if removed, it will be recreated the next time the application starts.
If you want to prevent it from being used after setting up your other accounts, set its password to something unknown and leave it in place.
A future version will add the ability to disable specific user accounts without deleting them, including the built-in cortex.admin account.