All Products
Search

This Product

    Bastionhost:Security policies for O&M administrators

    Document Center

    Bastionhost:Security policies for O&M administrators

    Last Updated:Mar 31, 2026

    After a Bastionhost administrator adds a user for you, we recommend that you change your password on a regular basis to ensure security. This topic explains how to change your password and public key, update your personal information, and reset the time-based one-time password (TOTP) authenticator app bound to your account.

    Change your password

    How you change your password depends on your user type:

    • RAM user: Contact the Bastionhost administrator. RAM users cannot change their own passwords directly. The administrator logs in with an Alibaba Cloud account and updates your password. For details, see Change the logon password of a RAM user.

    • Local user: Change your password directly using one of the methods below.

    Change your password as a local user

    Three methods are available. Use the one that matches how you connect to Bastionhost.

    Important

    The O&M portal cannot be accessed from an internal network. If Internet access is not enabled for your bastion host, use the SSH or RDP client method instead.

    Using an SSH client

    This example uses Xshell on Windows.

    1. Start Xshell and connect to your Bastionhost instance. For details, see Perform SSH-based O&M.

    2. On the asset selection page, run the following command:

      :passwd

    Using an RDP client

    This example uses Remote Desktop Connection (MSTSC) on Windows.

    1. Start Remote Desktop Connection (MSTSC) and connect to your Bastionhost instance. For details, see Perform RDP-based O&M.

    2. On the asset selection page, click Change Password. Asset selection

    Using the O&M portal

    1. Log on to the O&M portal. For details, see Web运维门户O&M portal-based O&M.

    2. In the left-side navigation pane, click Security Settings.

    3. On the Security Settings page, click the Change Password tab, change your password, and then click Save.

    Change the public key of a local user

    1. Log on to the O&M portal. For details, see Web运维门户O&M portal-based O&M.

    2. In the left-side navigation pane, click Security Settings.

    3. On the Security Settings page, click the Public Key tab and update your public key.

    Update your personal information

    1. Log on to the O&M portal. For details, see Web运维门户O&M portal-based O&M.

    2. In the left-side navigation pane, click Security Settings.

    3. On the Personal Information tab, update your information and click Save.

    Reset your OTP app

    Reset your TOTP app from the O&M portal if you switch authenticator apps or need to re-bind your current one.

    1. Log on to the O&M portal. For details, see Web运维门户O&M portal-based O&M.

    2. In the left-side navigation pane, click Security Settings.

    3. On the Security Settings page, click the Enable OTP tab, then click Reset OTP App.

    4. In the Bind OTP App dialog box, follow the on-screen instructions to bind your new OTP app and click OK. Bind OTP App