How can I disable/remove/change "admin" user?
Permalink
Hi
I seem to be unable (logged in as a user of the administration group of course) to edit (e.g. password), change in any way or actually delete the "admin" user.
As this user is created by default I think not being able to do anything about this account is a security risk. (just try out one million numbers as passwords - you will be in!)
How can I edit, better DELETE this account (as I have other admin accounts)?
Olaf
--
* together for better software *
*http://www.team-noehring.de *
I seem to be unable (logged in as a user of the administration group of course) to edit (e.g. password), change in any way or actually delete the "admin" user.
As this user is created by default I think not being able to do anything about this account is a security risk. (just try out one million numbers as passwords - you will be in!)
How can I edit, better DELETE this account (as I have other admin accounts)?
Olaf
--
* together for better software *
*http://www.team-noehring.de *
Hi
well, HOW can I change the account?
I do not see this option!
Olaf
well, HOW can I change the account?
I do not see this option!
Olaf
1. Go to the dashboard
2. Click on Users and Groups
3. Click the admin user
4. Click the button for "Edit User"
5. Change the username, password or other item
6. Click the button for "Update User"
2. Click on Users and Groups
3. Click the admin user
4. Click the button for "Edit User"
5. Change the username, password or other item
6. Click the button for "Update User"
Hi
well, this does NOT work (see the attached screenshot) - I do NOT have the "edit user" button when I select the admin account, but I do have it on other accounts!
Olaf
well, this does NOT work (see the attached screenshot) - I do NOT have the "edit user" button when I select the admin account, but I do have it on other accounts!
Olaf
Let's think about this for a moment. The admin user is the only administrator user in Concrete5. The admin user has access to everything, no matter its current permissions. It is unlikely that you would want just anyone to change the admin account.
You need to be logged into the admin account to make changes to the admin account.
You need to be logged into the admin account to make changes to the admin account.
Since 5.4.0 non-admin user can pretty much become admin.
So I decided to create another superuser account by using advanced permission mode.
And I disabled "admin" account when I'm not using it.
And I re-activate the "admin" account when I need to use it.
To increase the security of your site, I do:
1. change the username "admin" to something else
2. Disable admin account from other account when I'm not using it.
So I still want to other superuser to be able to disable the admin account.
So I decided to create another superuser account by using advanced permission mode.
And I disabled "admin" account when I'm not using it.
And I re-activate the "admin" account when I need to use it.
To increase the security of your site, I do:
1. change the username "admin" to something else
2. Disable admin account from other account when I'm not using it.
So I still want to other superuser to be able to disable the admin account.
Hi
well, good idea.
But I have a problem:
When I accessed the installation the very first time (as user "admin") I did simply copy and paste the numeric password. I created a new user for the admin group which I always use.
Now I forgot the numbers - I can not even log in as "admin" anymore (e.g. to switch to advanced permissions.
Any idea?
Olaf
well, good idea.
But I have a problem:
When I accessed the installation the very first time (as user "admin") I did simply copy and paste the numeric password. I created a new user for the admin group which I always use.
Now I forgot the numbers - I can not even log in as "admin" anymore (e.g. to switch to advanced permissions.
Any idea?
Olaf
Hi
ok, helped myself:
I used phpmyadmin to access the database, set a nice litte email address for the "admin" user, activated the account.
Afterwards I used the "forgot password" option to send myself the link for a new admin password.
Works, but well, I still do not understand why this is.
Olaf
ok, helped myself:
I used phpmyadmin to access the database, set a nice litte email address for the "admin" user, activated the account.
Afterwards I used the "forgot password" option to send myself the link for a new admin password.
Works, but well, I still do not understand why this is.
Olaf
Hi. I'm relatively new to Concrete5 and have had a developer set up my environment who set themselves up as admin. I want to take control of it now and have changed the password but can't work out how to change the email back to my email address.
How can I change the admin email address?
Thanks in advance
Peter
How can I change the admin email address?
Thanks in advance
Peter
You can change the name of the account, and you can choose a more secure password. Doing both of those things is equivalent to deleting the original account with the advantage of keeping administrator privileges.