Report: Investigation into OnTime Software Default Username and Password
Introduction
OnTime Software is a popular time tracking and attendance management solution used by various organizations. As part of our security audit, we investigated the default username and password for OnTime Software to identify potential security risks. This report summarizes our findings and provides recommendations for improvement.
Methodology
To conduct this investigation, we:
Findings
Our investigation revealed that:
adminadmin (or no password at all, depending on the version)Security Risks
The existence of default username and password combinations poses significant security risks, including:
Recommendations
To mitigate these risks, we recommend:
Conclusion
Our investigation into OnTime Software's default username and password revealed significant security risks. We urge administrators to take immediate action to change default credentials, enforce strong password policies, and ensure secure transmission of data. Additionally, we recommend that OnTime Software updates its default settings and documentation to prioritize security best practices.
Recommendations for OnTime Software
By taking these steps, organizations can significantly improve the security posture of their OnTime Software instance and protect sensitive data.
The "Admin" Secret: Getting Started with OnTime Software When you first install a powerful tool like
, whether it’s for project management (Axosoft), group calendars, or employee attendance, the first hurdle is often the most basic: What is the default login?
Getting stuck at the login screen is a common rite of passage for new administrators. This guide provides a deep dive into the default credentials and authentication methods for the various software suites that carry the "OnTime" name. 1. Axosoft OnTime (Project Management)
Axosoft’s OnTime (now often referred to simply as Axosoft) is a staple for agile development teams. If you’ve just set up a new instance, the default credentials are straightforward: Default Username: Default Password: (Leave this field blank) support.axosoft.com Post-Login Action:
As a critical security measure, you should immediately update this password. Navigate to the user button in the upper right and select Change Password support.axosoft.com 2. ONtime Employee Manager (Attendance & HR)
For the ONtime Employee Manager software, often used with biometric devices, the system creates a default admin account upon installation. ONtime Employee Manager Default Username: Default Password: (Note: The is capitalized) Password Management: If you need to change this later, go to User Setting , select the admin user, and click to find the Change Password ONtime Employee Manager 3. OnTime Group Calendar (Microsoft/IBM)
The OnTime Group Calendar suite often bypasses "default" passwords in favor of integrated authentication. Outlook/Exchange Integration: You typically login using your Outlook email address and password Single Sign-On (SSO): Many installations are linked to your Windows AD domain
, allowing for seamless pass-through authentication without a separate software-specific password. Initial Setup:
For certain versions, a specific User Name and Password may be supplied directly by the Support Department via email during your onboarding. Cast & Crew 4. Best Practices for Software Security
Using default credentials is one of the most common entry points for security breaches. Here is how to move beyond the defaults: Immediate Rotation:
Never leave a system on its default "admin/admin" or blank password state. Role-Based Access: Once logged in as the admin, create Normal Users and assign specific Access Rights
(View, Modify, Delete) to ensure people only see what they need. Enable MFA/SSO: Whenever possible, link your OnTime software to SAML settings
to enforce modern security standards like Multi-Factor Authentication. ONtime Employee Manager for any of these specific versions? FAQ - ONtime Employee Manager
The default credentials for OnTime attendance software are Username: admin and Password: admin (with a capital "A" or entirely lowercase, depending on the specific database version).
Here is a short story about how relying on those exact default credentials turned a normal workday into a race against the clock. 🕒 The Default Gate
Leo adjusted his glasses and stared at the glowing monitor. It was 11:45 PM on a Tuesday. As the newly hired IT administrator for a mid-sized logistics company, he was tasked with a routine but critical job: migrating the company’s legacy employee attendance system, OnTime, to a new dedicated server. ontime software default username and password
The physical server was racked, the database was transferred, and the software was successfully installed. Now came the final test: logging in to ensure the local database was reading the employee clock-in records correctly.
Leo pulled up the login prompt. He reached for the physical folder the previous admin had left him, labeled “Master Credentials.” He flipped it open. The page for OnTime was blank.
Panic flared in his chest. Tomorrow morning at 6:00 AM, the first shift of 200 drivers and warehouse workers would arrive to clock in. If the system was down, payroll would become a nightmare, and logistics would grind to a halt.
"Think, Leo, think," he muttered. He pulled up his phone and began searching through archived system manuals and technician forums.
He found a dusty thread from years prior discussing the setup of the OnTime Attendance platform. A user had posted a simple tip for first-time setups: Username: admin
Password: admin (Note: Try with a capital 'A' if lowercase fails)
Leo turned back to his keyboard. He typed admin into the username field. He hovered over the password box and carefully typed Admin with a capital 'A'. He pressed Enter.
The screen lagged for a brief, agonizing second. Then, with a soft chime, the dashboard loaded. A sea of green checkmarks appeared, displaying the active logs of the employee roster. He was in.
Leo didn't celebrate just yet. He knew that leaving default credentials active was the ultimate cardinal sin in IT security. Anyone on the local network could have wiped the database or manipulated the hours.
Navigating swiftly through the system, he went directly to User Setting ⇨ User Info, selected the default profile, and clicked Modify. He promptly changed the password from the vulnerable default to a complex, 16-character string. He saved the settings, logged out, and logged back in with the new secure credentials just to be absolutely sure.
At 12:15 AM, Leo finally shut down his laptop, picked up his bag, and walked out of the server room. The default gate had saved him from a disaster, but his quick action ensured it wouldn't cause one later. FAQ - ONtime Employee Manager
The default credentials for OnTime attendance and payroll software are typically: Username: admin Password: admin (often with a capital 'A', like Admin) The "Capital A" Story
In the world of IT support, there is a recurring "interesting story" (or rather, a common headache) involving this specific software's login. Many users find themselves locked out simply because the system is case-sensitive.
According to technical guides and user experiences from YouTube tutorials, the default password is often Admin. If a user types admin in all lowercase, the software will reject it. This minor detail has led to countless support calls where the "fix" was simply pressing the Shift key once. Once you're in, it's highly recommended to navigate to User Settings > User Info to change these defaults for security. Managing Users If you are setting up the software for the first time: Modify Defaults: Use the admin/Admin combo to log in.
Add Employees: You can create new users by selecting User Type, entering a login name, and linking them to existing employee records via the "Is Existing Employee" checkbox.
Security Tip: Never leave the default credentials active on a live network, as "admin/admin" is the first combination any unauthorized person (or automated script) will try. How to change password of an user in ONtime?
The OnTime Software Conundrum
It was a typical Monday morning for John, a IT support specialist at a small business. He had just arrived at work and was sipping on his coffee when a colleague approached him with a problem. "Hey John, I'm having trouble with our OnTime Software installation," she said. "I need to access the admin panel, but I don't have the username and password."
John knew that OnTime Software was a popular ticketing and project management tool, but he had never used it before. He asked his colleague for more information, and she told him that the software had been installed a few months ago by a previous IT specialist who had left the company.
After some digging, John found the installation notes and a sticky note with the default username and password. The note read: "admin / ontime123". John tried logging in with these credentials, but they didn't work.
He decided to search online for the default username and password for OnTime Software. After a few minutes of searching, he found a forum post that mentioned the default credentials: "admin / ontime" (without the numbers). John tried these credentials, and to his surprise, they worked.
As he logged in to the admin panel, John realized that the previous IT specialist had never changed the default password. He quickly changed the password to a strong one and documented the new credentials for future reference.
But then, John had an idea. He decided to investigate further to see if there were any other default username and password combinations that could be used to access the software. After some more research, he found that OnTime Software had a well-documented default username and password list, which included:
John realized that many users might not be aware of these default credentials and could potentially leave their installations vulnerable to unauthorized access. He decided to create a guide for his colleagues on how to change the default username and password for OnTime Software and make sure to use strong and unique passwords.
The Moral of the Story
The story highlights the importance of changing default usernames and passwords for software installations. Default credentials can be easily found online, making it easy for unauthorized users to access the system. It's essential to use strong and unique passwords and to document them securely to prevent unauthorized access.
From then on, John's colleagues made sure to change the default username and password for OnTime Software, and John became known as the "security guru" of the IT department.
Was this story helpful? Do you have any questions about OnTime Software or password management?
The default credentials for OnTime software vary depending on whether you are using the attendance management suite or the project management platform by Axosoft. Common Default Credentials Axosoft OnTime (Project Management) : [None/Blank] ONtime Employee Manager (Attendance & Biometrics) (Note: Capital 'A' is often required) OnTime (Cast & Crew) Username/Password
: Typically supplied via email by the Support Department upon setup. support.axosoft.com Accessing & Managing Credentials How to add new user in ONtime? Findings Our investigation revealed that:
The default credentials for ONtime Employee Manager (attendance and time tracking software) are: Username: admin Password: Admin (case sensitive; note the capital "A") How to Log In and Change Password Launch the software and enter the credentials above.
Once logged in, go to the User Setting menu and select User Info. Click on Modify and then Change Password.
Enter the old password (Admin) and then set your new password. Save your changes to secure the account. Variations for Other "OnTime" Software
Because "OnTime" is a common name for software, your version might differ:
OnTime 360 / Delivery Software: Credentials are often provided via email from the support department. You can find more details in the OnTime 360 User Guide.
OnTime Group Calendar: You are typically prompted to create an admin password during the initial SQL Server configuration and setup.
Are you using the local desktop version or the OnTime Cloud platform? FAQ - ONtime Employee Manager
The default login credentials for "OnTime" software depend on which specific product you are using, as several different platforms share this name. 1. ONtime Employee Manager (Attendance/Biometric)
For this workforce management system, the default administrator credentials are: Username: admin Password: Admin (Note the capital "A")
How to reset if the default fails:If you have access to the SQL Server where the database is stored, you can reset the password by executing a SQL update query on the LogInfo table to clear or set a known password hash. 2. OnTime Group Calendar (by Intravision)
This enterprise scheduling tool typically integrates with HCL Domino or Microsoft Exchange.
Initial Setup: There is often no static "default" password. During the first installation using the OnTime Quick Install Guide, the setup wizard will explicitly ask you to create a new password for the admin account.
Login URL: The admin interface is usually found at https://[yourserver]:8443/ontimegcms/admin. 3. Axosoft OnTime (Project Management)
Username/Password: These are typically defined by your system administrator during user creation.
OnTime Stopwatch: If connecting via the OnTime Stopwatch utility, you must enter your standard web credentials and the OnTime Web URL. 4. Cast & Crew onTime™
Credentials: Usernames and passwords for this entertainment payroll platform are supplied via email by the Support Department. Requirements: Both fields are case-sensitive. 5. OnTime Mobile (Wilson Security) Username: Your Employee ID (e.g., 123456). Password: Your standard "Younity" system password.
Which specific OnTime software are you trying to access? Knowing the developer or industry (e.g., biometrics, payroll, or scheduling) will help me provide the exact steps for your version. AI responses may include mistakes. Learn more FAQ - ONtime Employee Manager
Accessing the admin panel of your OnTime software requires specific credentials. Depending on which version of "OnTime" you are using—be it the Axosoft project management suite or the OnTime Employee Manager (attendance software)—the default login details vary. Default Credentials for OnTime Software
Below are the most common default login combinations for the primary versions of the software: 1. Axosoft OnTime (Project Management)
For the Axosoft OnTime installed version, the factory default for the first-time setup is: Username: admin Password: (Leave Blank) 2. OnTime Employee Manager (Attendance/HR)
For the popular OnTime Employee Manager biometric and attendance software used widely in India and Asia: Username: admin Password: Admin (Note the capital 'A') 3. Cast & Crew onTime™ (Payroll/Production)
For users of the onTime™ platform by Cast & Crew, there are no universal default credentials.
Username/Password: These are supplied via email by your company’s Support Department. Note: Login fields are case-sensitive. How to Change or Reset Your Password
For security reasons, you should update your credentials immediately after your first successful login. To Change Your Password (Logged In):
Axosoft: Click on the User button (upper right) and select Change Password.
Employee Manager: Navigate to User Setting > User Info, select your user, and click Modify > Change Password. If You Forgot Your Password:
Axosoft Hosted: Visit the Axosoft Sign-in page and use the "Forgot Password" link to receive a reset email.
Employee Manager: You may need to use the Password Reset utility or contact your IT administrator to reset it via the User Rights dashboard. Security Best Practices Web Server Setup | Axosoft Documentation
Depending on the specific "OnTime" software you are using, the default login credentials differ. ONtime Employee Manager (Attendance/HR) ONtime Employee Manager
system (often used with biometric devices), the default administrator credentials are: (Note: The first letter "A" may need to be capitalized: ONtime Employee Manager Axosoft OnTime (Project Management) For older versions of the Axosoft OnTime project management suite, use: (Leave Blank) support.axosoft.com OnTime Clock Systems (Hardware) If you are using OnTime biometric clock hardware (like the VF200): (Admin Supervisor) Clocking Systems Features for Password Management for reporting via Microsoft SQL Server):
Once logged in, the following features are typically available to manage security: Change Password: Found under User Setting right arrow right arrow User Roles:
Allows you to assign specific "Access Rights" (View, Delete, Export) to different users to prevent unauthorized changes. Active/Inactive Status: Administrators can toggle users to to block login access without deleting the user profile. Security Tip:
Leaving default passwords active is a major security risk. It is highly recommended to change these credentials immediately after your first successful login. for any of these systems? How to add new user in ONtime?
OnTime software does not use a universal default username and password across all of its different product versions. Because "OnTime" is a name used by several different software applications, the default login credentials depend entirely on which specific system you are using.
To help you gain access, here are the default credentials and recovery steps for the most common systems named OnTime. Axosoft OnTime (Scrum & Bug Tracking)
Axosoft OnTime is a popular project management and bug tracking tool. Default Credentials Username: admin Password: (Blank - leave this field empty) How to Reset
If the blank password does not work, the default credentials have been changed. You can reset them using these methods:
Password Reset Link: Click the "Forgot Password" link on your specific OnTime login portal.
Database Override: If you host OnTime on your own servers, an administrator can manually reset the password hash directly inside the SQL Server database. OnTime Dispatch (Courier & Logistics Software)
OnTime 360 is an ever-present logistics and delivery management software suite. Default Credentials
Username: This is usually your registered email address or a specific account name provided during your initial setup.
Password: There is no factory-set default password for this cloud-based system. Your password is created during the account activation process. How to Reset
Desktop App / Web Portal: Click the "Forgot Password" link on the login screen.
Administrator Panel: If you are a driver or dispatcher, contact your company's system administrator. They can reset your password directly from the OnTime Management app. OnTime Group Calendar (IBM & Microsoft Integration)
This enterprise calendar polling and scheduling software integrates directly with IBM Domino or Microsoft systems. Default Credentials
Username: OnTime Group Calendar typically relies on single sign-on (SSO) or pulls active directory credentials directly from your parent system (like IBM Notes or Microsoft Outlook).
Password: Use your standard network or email password. There are rarely separate, standalone default credentials for this extension. How to Reset
Contact your internal IT helpdesk to reset your main corporate network password. Best Practices for Software Security
If you just installed a self-hosted version of any software that came with a default login, you must secure it immediately.
Change defaults immediately: Never leave admin or password as active credentials on a live system.
Enforce strong passwords: Use a mix of uppercase letters, lowercase letters, numbers, and symbols.
Enable MFA: Turn on Multi-Factor Authentication if the software supports it.
To help narrow this down and get you the exact fix, please let me know: Which company or developer made your OnTime software?
Is this for courier dispatching, software development, or group calendars?
Are you trying to access a self-hosted server or a cloud website?
After consulting official documentation, legacy installation guides, and common deployment scenarios for Ontime Software (including versions like Ontime 360, Ontime Dispatch, and Ontime Field Service), the most widely used default credentials are:
| Role | Default Username | Default Password |
| :--- | :--- | :--- |
| Administrator | admin | admin |
| Supervisor | supervisor | password |
| User | user | user |
| Guest / Read-Only | guest | guest |
In more recent versions (post-2020), due to security hardening, some installations use a variant:
ontime_adminchangeme or Ontime@123This report documents the default username and password for Ontime Software (commonly used for event production, scheduling, and show control). The purpose is to inform system administrators and security personnel about the presence of default credentials, associated risks, and recommended remediation steps.
Ontime stores user credentials in a hashed format. Using phpMyAdmin (for MySQL) or pgAdmin (for PostgreSQL):
ontime_users table.user_role = 'admin'.To check if default credentials are still active:
If you are connecting directly to the Ontime database (e.g., for reporting via Microsoft SQL Server):
localhost\ONTIMESQLsaadmin)