Another bonehead question: I have lost access to the UI . . . How can I change the admin password in the DB directly? I've tried setting to empty string but didn't work.

Hmm, I'm not sure there's a trivial way to do this as the password needs to be properly hashed with the salt. I assume you don't have SMTP configured such that you could use password reset? The easiest thing may be to configure an SMTP server by manually updating the configs in the

app_configs

table in MySQL, then requesting a reset. If you don't have a real SMTP server you could use something like Mailhog which we use for testing emails in a development environment (https://github.com/fleetdm/fleet/blob/main/docker-compose.yml#L29-L33)

Perhaps if the hashing scheme was known it could just be a case of hash(salt+newpassword) and put that result into the DB along with salt?