The recovery admin account has limited access to administrative functions

XMLWordPrintable

    • 1
    • Severity 3 - Minor
    • 0

      Issue Summary

      The recovery admin account has limited access to administrative functions in Confluence v9.2.6. 

      This is reproducible on Data Center: yes

      Steps to Reproduce

      1. Stop Confluence.
      2. Add the following system property, replacing <your-password> with a unique, temporary password.  
        {{CATALINA_OPTS="-Datlassian.recovery.password=<your-password> ${CATALINA_OPTS}"}}
      3. Start Confluence
      4. Check the atlassian-confluence-security.log file and find a newly generated recovery username: 
         {{2025-10-14 12:48:42,757 INFO [perm-delta-cache-receiver] [crowd.manager.recovery.SystemPropertyRecoveryModeService] isRecoveryModeOn Recovery mode is ON. Recovery admin username: 'xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx'}}
      5. Log in with the recovery username from the log and the temporary password you specified in the system property.

      Actual Results

      • When navigated to the General Configuration administration page using the recovery admin credentials, all the administrative tasks such as 'User Directories', 'Cache Management' are visible.

      Expected Results

      • When navigated to the General Configuration administration page using the recovery admin credentials, administrative tasks such as 'User Directories', 'Cache Management' are not visible.

      Workaround

      • Currently there is no workaround for this issue.

              Assignee:
              Unassigned
              Reporter:
              Sunil Kumar C
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Created:
                Updated:
                Resolved: