Password Reset

Started by TannhäuserGate95, June 03, 2026, 06:45:43 PM

Previous topic - Next topic
Hi everyone, i am new here.
I got locked out of my OPNsense because i tried changing password through KeepassXC randomized password which in hindsight kinda dumb.
At first the password worked once, so i continued changing other password, then the second time i tried again, it never worked again, ever.
The OPNsense is virtualized through Proxmox.
I tried multiple ways to reset the password, but the noVNC cannot show at reboot and I tried noVNC proxy from the Proxmox console itself, but it is also password locked.
"LC_PVE_TICKET not set, VNC proxy without password is forbidden"

My config & problem:

- OPNsense 25.1.12 on Proxmox 9.1.7
- i350-T4 PCIe passthrough
- noVNC loses connection during reboot
  because OPNsense IS the gateway
- Cannot see installer menu
- Boot order set to ide2 (ISO attached)
- ISO is OPNsense-25.1-dvd-amd64.iso
- VM uses SeaBIOS, q35 machine type
- Config backup exists from March 2026

I hope that anyone can help me sort this out without doing a fresh install.
Thank you.

Single user mode as per https://docs.opnsense.org/troubleshooting/password_reset.html but you need to be able to use the console, either physical or in this case virtual. So if you can't get to it, there is no way to change it.

How can I get console access to the VM when OPNsense IS the gateway and noVNC loses connection during reboot?
Is there a way to access the VM console (OPNSense) from the Proxmox host directly without going through the network?
The problem is, i can only access OPNsense console from the Proxmox GUI through noVNC, and noVNC will not display before the "splash screen"

Quote from: TannhäuserGate95 on June 04, 2026, 09:16:29 AMHow can I get console access to the VM when OPNsense IS the gateway and noVNC loses connection during reboot?
OPNsense is the gateway even for Proxmox and you have only remote access to it?
If so you have to change the configuration of Proxmox, so that you bypass OPNsense.

Quote from: TannhäuserGate95 on June 04, 2026, 09:16:29 AMi can only access OPNsense console from the Proxmox GUI through noVNC, and noVNC will not display before the "splash screen"
Don't agree.
The Proxmox integrated noVNC viewer shows the whole boot process in my setup.
In the noVNC screen there is also a start button shown up, if the VM is down.

Today at 01:10:04 AM #4 Last Edit: Today at 01:12:39 AM by TannhäuserGate95
Um, hi again everyone.
Sorry for the late update.
I was just focused on my final exam and away from projects last 3 weeks.
first of all thank you for everybody replying, especially viragomann for the insight.

Yes i confirmed the noVNC is LIVE,
what different is my setup.

In my case i have my adminPC under a VLAN on a switch connected to a VLAN A, whereas my OPNSense firewall, Proxmox (miniPC), and Switch SSH are upstream on a separate VLAN B (management)

The problem was, because OPNsense is the Proxmox gateway, restarting the OPNsense, cuts the connection from my PC into the Proxmox itself.
So it seems like the noVNC for the OPNsense is not "LIVE" eventhough it is.

Solution:
Connect Admin PC ethernet cable directly to Proxmox host NIC with the right IP on the management (VLAN B) subnet.
This bypass the OPNsense entirely.

if it's not clear how to change your IP
win+R
ncpa.cpl
double click your Ethernet
click on property
then double click on IPv4
change your IP

with stable noVNC connection:
1. Boot OPNsense VM, wait for the OPNsense splash screen to appear
2. press 2 for boot Single user
3. in my case there was a point where nothing happen and i have to press enter for the # to come out
4. then write: mount -o rw /
5. opnsense-shell password
6. press Y
7. change to a simple password first, because i use qwertz and the console use qwerty
8. don't forget to reboot
9. disconnect my ethernet cable from direct Proxmox NIC back to the switch
10. login to OPNsense web GUI and change to more secure password.
11. ...
12. ...
13. profit

thanks again for everybody trying to help
SOLVED