• Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login
Netgate Discussion Forum
  • Categories
  • Recent
  • Tags
  • Popular
  • Users
  • Search
  • Register
  • Login

Enable disabled user account from command line

Scheduled Pinned Locked Moved webGUI
8 Posts 4 Posters 2.3k Views
Loading More Posts
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • C
    chrisxps
    last edited by chrisxps Jul 24, 2019, 12:35 PM Jul 24, 2019, 12:34 PM

    Hi All,

    I need some help...

    Some time back created a new Admin account and disabled the old one, at the time everything worked fine

    After the 2.4.4 update i can no longer access user management (only change my password)

    How can i re-enable the admin account, i have edited the config file to remove the "disabled" tag in the hope that restarting the webconfigurator would reload it and allow access, nut no it doesn't

    Rebooting the appliance is not an option as its in front of services that are in constant use

    Surely it can be re-enabled via command line?

    Thanks in Advance

    G 1 Reply Last reply Jul 24, 2019, 1:37 PM Reply Quote 0
    • G
      Gertjan @chrisxps
      last edited by Jul 24, 2019, 1:37 PM

      @chrisxps said in Enable disabled user account from command line:

      Rebooting the appliance is not an option as its in front of services that are in constant use

      I didn't test drive this situation to the end, by actually disabling the 'admin' account.
      Creating a second admin called "admin2", member of the "admins" group still doesn't make it a real 'admin'.
      Normally, non trusted devices (== people= shouldn't be connected on the LAN, but on some other OPTx interface. So no need to disable the admin, as it is only accessible to LAN (using firewall rules on other interface).
      The console access can be protected using an "Authorized SSH Keys" - and a somewhat complicated password.

      So, I guess you're in for a reboot because you managed to lock yourself out.

      I'm not sure, but I have the impression a redmine mentions this issue.

      No "help me" PM's please. Use the forum, the community will thank you.
      Edit : and where are the logs ??

      1 Reply Last reply Reply Quote 0
      • J
        JeGr LAYER 8 Moderator
        last edited by Jul 24, 2019, 2:51 PM

        @chrisxps said in Enable disabled user account from command line:

        How can i re-enable the admin account, i have edited the config file to remove the "disabled" tag in the hope that restarting the webconfigurator would reload it and allow access, nut no it doesn't

        Do you have "sudo" installed? Otherwise do you know the (old real admin's) password? You could then use SSH to connect, su or sudo su - to the real root user and manually install the System Patches Package and apply the patch for the user management bug.

        Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

        If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

        1 Reply Last reply Reply Quote 0
        • D
          Derelict LAYER 8 Netgate
          last edited by Jul 24, 2019, 3:28 PM

          @JeGr said in Enable disabled user account from command line:

          You could then use SSH to connect, su or sudo su - to the real root user and manually install the System Patches Package and apply the patch for the user management bug.

          It's just a bad link in the menu. You can always just manually go to https://blah.blah.blah/system_usermanager.php

          Chattanooga, Tennessee, USA
          A comprehensive network diagram is worth 10,000 words and 15 conference calls.
          DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
          Do Not Chat For Help! NO_WAN_EGRESS(TM)

          G 1 Reply Last reply Jul 24, 2019, 4:06 PM Reply Quote 1
          • G
            Gertjan @Derelict
            last edited by Gertjan Jul 24, 2019, 4:06 PM Jul 24, 2019, 4:06 PM

            @Derelict said in Enable disabled user account from command line:

            It's just a bad link in the menu

            So there was (is) a redmine ....

            No "help me" PM's please. Use the forum, the community will thank you.
            Edit : and where are the logs ??

            1 Reply Last reply Reply Quote 0
            • D
              Derelict LAYER 8 Netgate
              last edited by Jul 24, 2019, 4:09 PM

              Yes. It'll be fixed in 2.5.

              https://redmine.pfsense.org/issues/9541

              Chattanooga, Tennessee, USA
              A comprehensive network diagram is worth 10,000 words and 15 conference calls.
              DO NOT set a source address/port in a port forward or firewall rule unless you KNOW you need it!
              Do Not Chat For Help! NO_WAN_EGRESS(TM)

              1 Reply Last reply Reply Quote 0
              • J
                JeGr LAYER 8 Moderator
                last edited by Jul 25, 2019, 7:09 AM

                @Derelict said in Enable disabled user account from command line:

                It's just a bad link in the menu. You can always just manually go to https://blah.blah.blah/system_usermanager.php

                Absolutely but an admin user (with sudo or su capabilities) can still install the fix that way even if it has trouble accessing the UI :) Installing pfSense-pkg-System_Patches via sudo/su and adding the patch that @jimp mentioned in threads/redmine is working that way ;)

                Don't forget to upvote 👍 those who kindly offered their time and brainpower to help you!

                If you're interested, I'm available to discuss details of German-speaking paid support (for companies) if needed.

                1 Reply Last reply Reply Quote 0
                • C
                  chrisxps
                  last edited by Jul 25, 2019, 9:46 AM

                  Thanks All,

                  Genuinely don't know why i didn't just try the url (facepalm) haha

                  1 Reply Last reply Reply Quote 0
                  8 out of 8
                  • First post
                    8/8
                    Last post
                  Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.
                    This community forum collects and processes your personal information.
                    consent.not_received