Unable to login as "admin" to WebAdmin Portal

Hello David,

Was the admin user renamed at all?

Emile

Good question -- I told the client that I'm working on this for them a while ago and they just called me back stating that the admin user and password they have on file is working fine now so I'm not sure what's going on.

I'm going to take a look and see.

Hi David,

What may have happened is that they were locked out due to the failed attempts and every time they entered it wrong it reset :P

Potentially a possibility but it does normally say how long the lockout has remaining.

Emile

Nevermind that.  It was a different admin portal that they were able to get into, not the one that seems currently broken as the "admin" user does not exist.

Thanks for the responses Emile but I do not believe this is the case.

I tested this on another machine in a sandbox environment and it is not a lockout that is occurring.  I have no way to log into the WebAdmin portal at the moment.  I see the "admin" user does not exist in `/etc/passwd` but I do not think it ever has.

Is there any direction within "cc" in the root bash prompt to see if the "admin" account can be re-created or reset or another can be added?  List of users perhaps?

Yeah not sure what else to do about this.

Tried looking around psql databases on the machine but I do not see where the "admin" user would be stored at all even on the test machine (working).

Hello David, 

I'm a little concerned that something in the back of my mind is saying if the admin is removed or renamed then the recovery tool will fail to operate.

As for making a new admin user via CLI, I'm not too sure.

BAlfson have you seen something like this before where the admin user is missing and how to recover without alternate webmin access? 

 Emile                                          

Hi David and welcome to the UTM Community!

You can see if there's an admin user with:

cc get_user_by_name admin

If there is, you can set the admin password to Easy1;-) with: 

cc passwd 'Easy1;-)'

Any luck with that?

Cheers - Bob

PS I prefer for there to be an account for each WebAdmin user (their LDAP username with backend auth if available) and that the 'admin' account be used as a backup account where only one user and the manager have the password.   That way, it's easy to see which admin did what in WebAdmin.

PPS Please Edit your original post above, deleting the external link and inserting your image(s) in its place.  We can't know if that external site is properly protected. The only malware I've gotten in over 10 years was from an external link to a picture in this forum 5+ years ago.  Thanks in advance!