Our Rhodecode adminstrator has left he company. I have root access
to the box.
How do I give my Rhodecode account administrator privileges?
If you can guess the mysql password, you can make your self admin with
mysql> use rhodecode;
mysql> update users set admin = 1 where username = 'your.username';
Another option is to use recovery console of RhodeCode and reset current user password.
See here: https://docs.rhodecode.com/RhodeCode-Enterprise/admin/reset-information.html#manually-reset-password
Related
In ClickHouse, is it possible to GRANT a user for changing his own password but without allowing him to alter his privileges nor the privileges/password of other users?
If I set GRANT ALTER USER TO myuser, I will allow myuser to change the password and the privileges of all the users. And that I don't want.
As I understood the final goal is to avoid compromising/sharing a 'fresh' client password.
I would suggest storing hashed passwords instead of plain text - see for details user settings - user_name/password.
In this case,
user should send to the admin the hashed password
and admin set it up by yourself by using ALTER USER.
Son of my collegue accidently created new user account in windows 8.1 and set it as admin. He also set password which of course doesn't know now. Is there any chance how to reset this password from guest account? Any software from third part or live linux? Thank you for helping
I tried some commands in cmd, but everything finished of course on admin permissions
visit C:/home windows/system32.
replica cmd.exe and paste it on laptop.
Rename cmd.exe to sethc.exe.
Replica the brand new sethc.exe to gadget 32,while home windows asks for overwriting the report,then click on sure.
Now log off from your guest account and on the user pick out window,press shift key 5 times.
6)In preference to Sticky Key affirmation conversation,command activate with complete administrator privileges will open.
Now kind “ net user ADMINISTRATOR “come 2 learn” where “come 2 learn” can be any password you want and press input.
You’ll see “ The Command finished successfully” after which go out the command set off and login into administrator together with your new password.
Bravo !! Now you have got hacked admin thru guest account.
I can't assign yourself the security_admin role (or assign it to anyone else unless you already have the role). If I look at the sys_user_role table and search for security_admin without having the role, you'll get a security error.
Somehow security_admin role is not visible to admins in Helsinki and Istanbul (Strange) . You can try below script to assign yourself security_admin privileges
var sr = new GlideRecord("sys_user_role");
sr.addQuery("name","security_admin");
sr.query();
if (sr.next())
{
var hh = new GlideRecord("sys_user_has_role");
hh.initialize();
hh.user = gs.getUserID();
hh.role = sr.sys_id;
hh.insert();
}
This is intentional as of the Helsinki release. In the past, a normal Admin could elevate their own privileges to the Security Admin, which is not always desirable. Just as no user should be able to elevate their own access, nor should an Admin be able to elevate their own access. This is why only someone with Security Admin access can grant the same access to another person.
I am working on Windows 10 Assigned Access for Desktop for version 1607.
Mission: I need to get Assigned Access to work with Powershell.
Steps done:
I create a new LocalUser account with New-LocalUser and I enable the account with Enable-LocalUser. To check if the account is added, I run Get-LocalUser and see that the account is created (see attachment).
Issue:
To double check I go to the PC settings for Accounts-Family & other people, but I cannot see the new local user account "KioskTest".
I have restarted the computer but the account is not added to "Family & Other people".
I have spent some time on this and I would really appreciate your help, How can I make sure that the added Local user "KioskTest" is shown in the PC Accounts settings-Family & other people, when using Powershell?
I can Set-AssignedAccess, when I do Get-AssignedAccess I can see that it is there. Trouble is, I cannot login to the local user account because I cannot find the account in the settings for the PC.
It's like powershell has "hidden" the local user account from my client computer!!!
ADDED information + updated images:
After some trial and error I found out the following:
Using NET USER username password/ADD --works perfectly! I can find the user account and login as a customer would. The account is part of the LocalGroupMember
The local user account created with New-LocalUser with Powershell does NOT appear in the PC account settings BUT if you click on set assigned access in the Family & other people the system finds the local user account (see attachment). However you cannot login to the account as it seemingly does not have a group membership! Not great for testing :(
Thanks for taking the time,
Karina
See attachment:
Powershell Get-AssignedAccess
PC Account settings Family & other people
In my case it was a group membership issue. I have created some users with powershell new-localuser, but they did not show up in any GUI and I was unable to log on. The users were only visible in powershell with get-localuser and lusmgr. In settings, control panel 'user accounts' and login screen they did not show up.
I just had to add the new users to the local 'users' group. Once this was done, the new users were visible in all settings and available for login.
I was unaware of that local security policy (local policy/user rights assignment/allow log on locally) restricting login to 'Guest,Administrators,Users,Backup Operators'.
Either add the users to one of these groups or add them to the local security policy.
This isn't really a PowerShell issue and might be better suited for SuperUser. But I would guess that this is an issue with group membership. Unfortunately get-localuser doesn't give membership. So something like this would be the PowerShell way to check which user objects belong to which local groups.
Get-Localgroup | % { "`n$($_.name)`n"; get-localgroupmember $_}
Then check through which groups other user objects are a member of and add the KioskTest account to that group using this:
Add-LocalGroupMember -Group "ExampleGroup" -Member "KioskTest"
To validate user is created or not, the below simple command helps. You may try it.
In case user is created you will get below output
Command- net user TestUser2
Output-
User name TestUser2
When user is not present
Command- net user TestUser
output-
The user name could not be found.
I had the same issue. The problem was that when specifying the group I didn´t take into account that before the name of the group needs to go domain or in my case, name of the virtual machine. Therefore the command will look like this:
... -Group "DomainName\ExampleGroup" ...
You can check the existing groups on your machine by typing lusrmgr in Window´s run window.
I have two admin accounts, one of which i forgot the password. I have another admin account but i don't want to reset the password but reveal or see the old password using CMD. I have been searching for this since a long time but had no luck with it! Hoping I would get the answer this time :)
I know to reset password using CMD prompt: net user < user > < password >
But my old emails have the same password as this account. So i want to Retreive my old password rather than reseting it!