Page 1 of 1
Disable the admin user
Posted: 25 Aug 2021, 05:35
by titanrx8
To increase security, I'd like to rename or disable the admin user.
A brute force attack only needs to find the password. Changing the admin or disabling the user requires finding both elements.
Re: Disable the admin user
Posted: 25 Aug 2021, 06:45
by djonesuk
If you disable the only admin user how would you ever enable it again?
Re: Disable the admin user
Posted: 25 Aug 2021, 10:00
by TMSupport
Hi! You can reintall TOS 4.2.15 version, and then set the administrator name you want during initialization.
Before that, you need to back up your data.
Re: Disable the admin user
Posted: 25 Aug 2021, 21:53
by titanrx8
djonesuk wrote: ↑25 Aug 2021, 06:45
If you disable the only admin user how would you ever enable it again?
By creating another admin privilege account like I've done in my other brands of NAS servers.
Re: Disable the admin user
Posted: 25 Aug 2021, 22:13
by titanrx8
TMSupport wrote: ↑25 Aug 2021, 10:00
Hi! You can reintall TOS 4.2.15 version, and then set the administrator name you want during initialization.
Before that, you need to back up your data.
Thanks.
I'll take care of that during my next scheduled down time.
Re: Disable the admin user
Posted: 25 Aug 2021, 23:22
by djonesuk
titanrx8 wrote: ↑25 Aug 2021, 21:53
djonesuk wrote: ↑25 Aug 2021, 06:45
If you disable the only admin user how would you ever enable it again?
By creating another admin privilege account like I've done in my other brands of NAS servers.
I think you're working on the misconception that there is a pre-defined 'administrator' user. There isn't. The first user that you create will become the administrator, whatever its called.
Re: Disable the admin user
Posted: 04 Mar 2022, 06:17
by alexinwonderland
So, if I want to disable that "first user" administrator (after creating another one), I can't??? I need to remove the OS completely and reinstall everything from scratch?????
Re: Disable the admin user
Posted: 04 Mar 2022, 19:11
by TMSupport
There is no need to reinstall the TOS system, please go to Control Panel > General Settings > Update & Restore > Backup & Restore to reset the system configuration to create a new administrator.
Re: Disable the admin user
Posted: 10 Mar 2022, 21:25
by nedhedrick
I have the same issue. When I originally installed TOS, I selected "admin" as my superuser name. Now I want to further secure my system by defining a new superuser (with an obscure name), then disable or delete the old "admin" username. I can easily define the new user, but deleting or disabling the
previous one is not allowed.
If I try to reset the configuration to create a new superuser, the old one is restored when I restore the old configuration, and it still cannot be disabled or
deleted.
I'm sure this was designed intentionally to avoid accidentally losing the ability to control your NAS by deleting the only administrative user. But I also
believe this is a security shortcoming as you really need the ability to obfuscate your superuser as a security enhancement without having to completely
re-install your TOS.
Please consider this enhancement for implementation in TOS.
Thanks!