Loading...
 
Features / Usability

Features / Usability


Administrator account requires administrator approval

posts: 126

Hey everyone,

We have one super admin account to reduce our attack surface. We do not log into it very often, again for the same reason.

Today, I attempted to log into the super admin account and was presented with,

Account requires administrator approval


...but it is the administrator.

I have seen it before and was able to go into the database and update the SQL. This is obviously not an ideal solution, so I have two questions.

  1. What is the recommended way to rectify this?
  2. How do we prevent it in the future?


Thanks,

J

posts: 126886 United Kingdom
James Geddes wrote:

Today, I attempted to log into the super admin account and was presented with,

Account requires administrator approval


...but it is the administrator.


Hi James

I saw this the other day after doing a database update on a test site, but i wasn't sure if i'd messed up the data while experimenting. Did you also do an update since that account was last logged in to?

If anyone can work out how to reproduce this i'll try and fix it quicky quick!

posts: 126
Jonny Bradley wrote:
I saw this the other day after doing a database update


I was not doing any updates at the time. I did notice that login attempts was greater than 0 so that could have blocked the account, though the other time I experienced this I believe login attempts was 0. Not much help, I know, so sorry!


posts: 126
Quick update on this - looks like the
Copy to clipboard
unsuccessful_logins
is being maxed out, which is why the account gets disabled. Fair enough!


I guess the best way around this would be to implement recaptcha or similar.

posts: 2 Uganda

I do have the same problem.
Resetting the admin password in Softaculous does not work.
I didn't understand what is meant with "update the SQL".
In table 'user.user' I did the following
- set 'unsuccessful_logins' to 0 (was 51): no success
- set 'waiting' to 'NULL' (was 'a'): that solved it.


posts: 126886 United Kingdom

Hi David

You should also be able to go to the user details on the user admin page and click the "validate user" button to clear this, or run the command php console.php users:unlock admin in the command line if you have access to one.

posts: 2 Uganda

Thanks for replying Jonnny,
In case the error pops up again, I will try the command. Any other approach would be helpful since a console may not be available to everybody and even if it may be too daunting.

If I cannot log in (the nature of this issue), how could i access the user admin page?

Greetings


Upcoming Events

1)  18 Apr 2024 14:00 GMT-0000
Tiki Roundtable Meeting
2)  16 May 2024 14:00 GMT-0000
Tiki Roundtable Meeting
3)  20 Jun 2024 14:00 GMT-0000
Tiki Roundtable Meeting
4)  18 Jul 2024 14:00 GMT-0000
Tiki Roundtable Meeting
5)  15 Aug 2024 14:00 GMT-0000
Tiki Roundtable Meeting
6)  19 Sep 2024 14:00 GMT-0000
Tiki Roundtable Meeting
7) 
Tiki birthday
8)  17 Oct 2024 14:00 GMT-0000
Tiki Roundtable Meeting
9)  21 Nov 2024 14:00 GMT-0000
Tiki Roundtable Meeting
10)  19 Dec 2024 14:00 GMT-0000
Tiki Roundtable Meeting