topic Re: Kerboros, LDAP, lost primordial admin account access in Alfresco Archive

Kerboros, LDAP, lost primordial admin account access

deisenlord — Mon, 23 Dec 2013 18:00:55 GMT

I've updated to 4.2.e and it has fixed the Kerberos SSO problems which is working fine now. However I've lost access to the built-in "admin" user. I don't get a peep in the alfresco or share logs but this shows up in the catalina.out log. My authentication chain is now limited to kerberos and ld

Re: Kerboros, LDAP, lost primordial admin account access

deisenlord — Mon, 23 Dec 2013 19:22:52 GMT

Simply adding AlfrescoNtlm back into my chain at the end resolved my problem. I assume this is by design?

Re: Kerboros, LDAP, lost primordial admin account access

scouil — Thu, 02 Jan 2014 14:20:27 GMT

Hi,

Sorry to only drop by after your problem have already been solved.
And yes, you guessed right, it's by design.
AlfrescoNTLM is to handle some users locally in Alfresco. And the built-in admin user is one of them.
So if you take NTLM out of your chain, it will try to authenticate the "admin" user in your other systems but will never fallback to NTLM where the built-in admin user is stored.