Re: [otrs] Help - A rogue administrator locked everyone out

On 1/23/07, Petar Kazakov wrote:

By default Admin group seems to be with ID 2. I hope it is not did by assumption :-)

But there is all section Frontend::Admin::ModuleRegistration in SysConfig.

In Kernel/Config/Files folder, there is a file with all your custom settings ZZZAuto.pm. The defaults are in ZZZAAuto.pm You can rename or move the ZZZAuto.pm to remove any changes, or take from somewhere a cleen copy of ZZZAAuto.pm the default setting.

My investigations yield a modification date for ZZZAAuto.pm to be January 19th. And there are many references to the group admin. Our admin group is currently called Admin. The rogue administrator had just modified the name admin to Admin. Can someone confirm to me that the default group name for 2.0.4 is admin. The settings in ZZZAAuto.pm are case sensitive. Thanks again for your help, Philip

I just can guess what the admin did ... And it can be anything :-) don't get me wrong but you should consider making a fresh copy of the OTRS, maybe on other machine, just to check out is there any problem with the DB ... :-/

Regards Peter

-----Original Message----- From: otrs-bounces@otrs.org [mailto:otrs-bounces@otrs.org] On Behalf Of Philip Mark Donaghy Sent: Monday, January 22, 2007 9:31 PM To: User questions and discussions about OTRS.org Subject: Re: [otrs] Help - A rogue administrator locked everyone out

Thanks Petar for your much needed reply,

On 1/22/07, Petar Kazakov wrote:

...

You need to do the following Find out you admin group ID Find the ID for some user (like admin, root@localhost or what so ever is call you admin user) Execute next command update group_user set permission_value="1" where user_id="x" and group_id="y";

this will give your user RW access to that group and you should be able to have access to you admin section

This is what I have already verified. Is there a setting that specifies the admin group or is it always assumed to be Admin (id=2).

And are there any settings on the module.

Philip

...

Peter

-----Original Message----- From: otrs-bounces@otrs.org [mailto:otrs-bounces@otrs.org] On Behalf Of Philip Mark Donaghy Sent: Monday, January 22, 2007 2:47 PM To: otrs@otrs.org Subject: [otrs] Help - A rogue administrator locked everyone out

Hi, I am trying to restore admin access to the system users who were locked out by a rogue administrator. Unfortunately this kind of thing can happen. I have access to the mysql data and I am using otrs 2.0.4.

...

From what I can see the column valid_id in the group Admin (id = 2) should be set to 1.

And then the table group_user requires a certain number of permissions.

The user administrator has the permission_key rw set with the permission_value 1. Yet this user does not have an admin link.

If I login it as administrator and go directly to the link http://localhost/otrs/index.pl?Action=AdminGroup

The error I have is "No permission".

Please Help, Philip

_______________________________________________ OTRS mailing list: otrs - Webpage: http://otrs.org/ Archive: http://lists.otrs.org/pipermail/otrs To unsubscribe: http://lists.otrs.org/cgi-bin/listinfo/otrs Support orr consulting for your OTRS system? => http://www.otrs.com/

-- Philip Donaghy donaghy.blogspot.com del.icio.us/donaghy/philip Skype: philipmarkdonaghy Office: +33 5 56 60 88 02 Mobile: +33 6 20 83 22 62