The recovery admin account has limited access to administrative functions

XMLWordPrintable

    • 1
    • Severity 3 - Minor
    • 0

      Issue Summary

      The recovery admin account has limited access to administrative functions in Confluence v9.2.6. 

      This is reproducible on Data Center: yes

      Steps to Reproduce

      1. Stop Confluence.
      2. Add the following system property, replacing <your-password> with a unique, temporary password.  
        {{CATALINA_OPTS="-Datlassian.recovery.password=<your-password> ${CATALINA_OPTS}"}}
      3. Start Confluence
      4. Check the atlassian-confluence-security.log file and find a newly generated recovery username: 
         {{2025-10-14 12:48:42,757 INFO [perm-delta-cache-receiver] [crowd.manager.recovery.SystemPropertyRecoveryModeService] isRecoveryModeOn Recovery mode is ON. Recovery admin username: 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'}}
      5. Log in with the recovery username from the log and the temporary password you specified in the system property.

      Actual Results

      • When navigated to the General Configuration administration page using the recovery admin credentials, all the administrative tasks such as 'User Directories', 'Cache Management' are visible.

      Expected Results

      • When navigated to the General Configuration administration page using the recovery admin credentials, administrative tasks such as 'User Directories', 'Cache Management' are not visible.

      Workaround

      • Currently there is no workaround for this issue.

            Assignee:
            Unassigned
            Reporter:
            Sunil Kumar C
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

              Created:
              Updated:
              Resolved: