Login screen shows "Invalid username or password" for all users despite using the correct passwords

lando336 · October 20, 2025, 5:45pm

Situation
My AWS EC2 instance of OpenEMR Express Plus is no longer allowing any of the users to login longer. Instead it only shows the “Invalid username or password” error message. Both I and the nurse practitioner know we are using our correct passwords. I suspect it may have something to do with the password expiring since I deployed the instance on AWS Cloud servers back in early March and it is now nearing the end of October. However, I do not know what I need to access and how to access it to change any line of code to allow us to sign in again (reset the timeframe for password reset, etc.). Unfortunately, I need into this instance without deleting any data stored on it as we have used it already and need that documentation. Urgently if possible as some of the data is needed as soon as I can have access to it. Any help navigating this issue would be greatly appreciated.

OpenEMR Version
I’m using OpenEMR version: OpenEMR Express Plus v7.0.0 cloud deployment

Browser:
I’m using: Google Chrome

Operating System
I’m using: Windows 11/AWS Cloud Server (t3.small/free tier)

Search
It seems the ones who resolved it were using a different setup for server deployment and maintenance that I am.

Logs
Did you check the logs? If someone could assist me in finding the logs, I will post them in a comment. It seems AWS needs the instance to be deployed with specific settings to allow logs to store in the CloudWatch logs and I must have not set that up correctly because no logs are stored there.
Was there anything pertinent in them?
Please paste them here (surround with three backticks (```) for readability.
You can also turn on User Debugging under Administration->Globals->Logging User Debugging Options=>All

ninjatx · November 4, 2025, 2:22pm

I’m not a dev but I’ve seen this problem happens all the time. OpenEMR needs to have a better system for expired password. Check into this post: Resetting user passwords through database

lando336 · December 16, 2025, 6:48am

Thank you so much for your suggestion. I am still new to this whole process, but that particular post did help me understand how to run php on the AWS server I have running. However, it unfortunately did not fix my issue so I am still on the hunt for another solution. Maybe there is a php that I can run that will change the duration of the password expiration time limit? But regardless, thank you so much for your feedback.

stephenwaite · December 16, 2025, 12:46pm

hi @lando336, here’s a related topic that discusses this issue and the below sql statement (not php) where the id of 1 is the id of the user in the database table users_secure.

UPDATE users_secure 
SET login_fail_counter = 0, 
    last_update_password = DATE_SUB(NOW(), INTERVAL 1 DAY), 
    last_update = DATE_SUB(NOW(), INTERVAL 1 DAY) 
WHERE id = 1;