Salesforce DX Developer Guide

How Salesforce Developer Experience (DX) Tooling Changes the Way You Work
Provide Developers Access to Salesforce DX Tools
Project Setup
Authorization
Metadata Coverage
Scratch Orgs
Supported Scratch Org Editions and Allocations
Build Your Own Scratch Org Definition File
Create a Scratch Org Based on an Org Shape
Create Scratch Orgs
Scratch Org Snapshots
Select the Salesforce Release for a Scratch Org
Deploy Source From Your Project to the Scratch Org
Retrieve Source from the Scratch Org to Your Project
Scratch Org Users
Create a Scratch Org User
User Definition File for Customizing a Scratch Org User
Generate or Change a Password for a Scratch Org User
Manage Scratch Orgs from the Dev Hub Org
Scratch Org Error Codes
Sandboxes
Track Changes Between Your Project and Org
Development
Build and Release Your App
Unlocked Packages
Continuous Integration
Troubleshoot Salesforce DX
Limitations for Salesforce DX
PDF

Newer Version Available

This content describes an older version of this product. View Latest

Generate or Change a Password for a Scratch Org User

By default, new scratch orgs contain one administrator user with no password. Use the org generate password CLI command to generate or change a password for this admin user. After it's set, you can’t unset a password, you can only change it.
You can also use the --on-behalf-of flag to generate a password for a scratch org user that you've created locally with the org create user command. You can’t use the org generate password command for users that you created in the scratch org with Setup.
  1. Generate a password for a scratch org user with this command: 
    1sf org generate password --target-org <username-or-alias>

    You can run this command for scratch org users only. The command outputs the generated password.

    The target org must be the username or alias for the scratch org admin user. Use the --on-behalf-of flag to assign passwords to multiple users at once, including admin users, or to users who don’t have permissions to do it themselves. Specify multiple locally created users by specifying multiple --on-behalf-of flags. For example, let’s say the my-scratch alias corresponds to the scratch org’s admin user, and you want to generate a password for users with aliases ci-user and qa-user:

    1sf org generate password --target-org my-scratch --on-behalf-of ci-user --on-behalf-of qa-user
    By default, the command generates a password that's 13 characters in length; the possible characters include all lower and upper case letters, numbers, and symbols. To change the password strength, use the --length and --complexity flags. The --complexity flag is a number from 0 through 5; the higher the value, the more possible characters are used, which strengthens the password. The default value is 5. See the command-line help for a description of each value. This example shows how to generate a password that's 20 characters long:
    1sf org generate password --target-org my-scratch --length 20
  2. View the generated password and other user details: 
    1sf org display user --target-org qa-user
2Warning: This command exposes sensitive information <truncated for readability>
3
4=== User Description
5
6 key          label                                                                                                            
7 ──────────── ──────────────────────────────────────────────────────────────────────────────────────────────────────────────── 
8 Username     1690397809_test-st9thgoyyyq3@example.com                                                                         
9 Profile Name Standard User                                                                                                    
10 Id           0058I002inzvQAA                                                                                                  
11 Org Id       00D80000PhAkUAK                                                                                                  
12 Access Token 00D8I<truncated> 
13 Instance Url https://connect-enterprise-1121-dev-ed.scratch.my.salesforce.com                                                 
14 Login Url    https://connect-enterprise-1121-dev-ed.scratch.my.salesforce.com                                                 
15 Alias        qa-user                                                     
16 Password     ogihymg%lXa
  3. Log in to the scratch org with the new password:
    1. From the org display user output, copy the value of the Instance URL and paste it into your browser. In our example, the instance URL is https://connect-enterprise-1121-dev-ed.scratch.my.salesforce.com.
    2. If you’ve already opened the scratch org with the org open command, you’re automatically logged in again. To try out the new password, log out and enter the username and password listed in the output of the org display user command.
    3. Click Log In to Sandbox.

If you change a scratch org user’s password using the Salesforce UI, the new password doesn’t show up in the org display user output.

Note