How I 'Renamed' My WebUI Admin Username

  • Hello, I'm a new OMV user and spent a lot of time to figure out how to change the WebUI username. I read everywhere and what I found was like this is not supported by OMV so maybe my workaround can help somebody out there.

    So here's what this thread is about: Rename the default 'admin' user to something else


    Enough said, here's what I did:

    1. In the web UI, create a new user and put the user inside 'openmediavault-admin' group. Don't forget to Save and Apply of course.

    2. Try logging out from your web UI and log back in with the new username you just created. If it works, now let's proceed to the next step. Don't proceed if you can't log in with the new username you created with step #1.

    3. Let's delete the default 'admin' user. SSH into OMV as root (or as sudoer user and prefix the command with sudo) and do userdel admin

    4. Now we need to modify the omv-env 'OMV_WEBGUI_ADMINUSER_NAME' (which default to admin) to the username you created above. You can do it by following this documentation: https://openmediavault.readthe…n/5.x/various/advset.html. For the simplicity, just open the file /etc/default/openmediavault and find the line: OMV_WEBGUI_ADMINUSER_NAME=admin and change it to OMV_WEBGUI_ADMINUSER_NAME=yournewuser (replace yournewuser with the username you created above of course). Why is this step needed? Because if you don't do this, OMV script will recreate the default 'admin' username again whenever you update your omv package.


    Thank you. And maybe someone else can give me any advice if this is not recommended in some way. ;)

  • geaves

    Approved the thread.
  • With all due respect picking up old threads which have asked a similar question and redirecting them here is not really cricket and fills the forum with unnecessary redirection.

    As I said if this is approved and accepted it will be moved

    Raid is not a backup! Would you go skydiving without a parachute?

  • With all due respect picking up old threads which have asked a similar question and redirecting them here is not really cricket and fills the forum with unnecessary redirection.

    As I said if this is approved and accepted it will be moved

    Oh sorry for that, so I should delete the other posts?

  • I honestly cannot fathom peoples obsession with this. In most home setups, which is what OMV is geared towards, a vast majority of the time 1 person is managing the server. Surely you don't want to make all users admin's who can log in through the webUI, as someone who doesn't know what they are doing could easily cause some havoc.


    What is wrong with just using the admin account? This just seems to be making a mountain out of a molehill. I wouldn't even suggest it for a thread in General, let alone a thread in the guide section.

    Air Conditioners are a lot like PC's... They work great until you open Windows.


  • Everybody’s different, but some folks are more different than others.

    Simple and sure backup and restore: In a Scheduled Job: rsync -av --delete /srv/dev-disk-by-label-SOURCE/ /srv/dev-disk-by-label-DESTINATION/ (HT: Getting Started with OMV5)
    Server Software: OMV 5 (current) - My Main Server: Thinkserver TS140, Nextcloud, Plex, Airsonic, Navidrome, Ubooquity, Digikam, & Heimdall - My Backup Machine: NanoPi M4 (v.1), Pi-Hole - Odroid XU4 (Using DietPi) - Testing/Playing: hc2, xu4, Pi 3B+, Odroid H2. Mac user converting to Linux, Debian 10 KDE.

  • How long before someone posts saying they want to rename the root user?

    --
    Google is your friend and Bob's your uncle!


    OMV AMD64 5.x on Chenbro NR12000 1U 1x 8m Quad Core E3-1220 3.1GHz 16GB ECC RAM.

  • Using admin is a security risk. Even if you don't expose omv5 web to the internet, if something gets into your network the first thing they do is test ports, or, worse, open every port using UPNP (never leave this enabled) just to see what they can get to. Once they find the port knowing it is the default omv5 web port gives them the username. And yes, root on linux has the same problem. This is why root access should be disabled always in favor of sudo. This is no joke, several of the ransomware events started with a breakin using well known account names as a first step. Thanks for the instructions how to eliminate admin!

  • Using admin is a security risk. Even if you don't expose omv5 web to the internet, if something gets into your network the first thing they do is test ports, or, worse, open every port using UPNP (never leave this enabled) just to see what they can get to. Once they find the port knowing it is the default omv5 web port gives them the username. And yes, root on linux has the same problem. This is why root access should be disabled always in favor of sudo. This is no joke, several of the ransomware events started with a breakin using well known account names as a first step. Thanks for the instructions how to eliminate admin!

    You're still not accounting for the fact that an even bigger problem is weak/default passwords. I disagree strongly about sudo. There is no difference between a root account being compromised, and a user account being compromised at that point.. To me, the smarter thing is to not allow remote logins via SSH as root, and do not give users sudo access (I'm assuming of course they are trying to gain access over ssh). This is going to require cracking 2 passwords to do any real significant damage... which again if you're using good passwords... most of the script kiddies, etc.. will move on to an easier target. If you're against a determined, legitimate hacker... eventually they are going to find a way in to almost any system that is connected to the Internet.

    Air Conditioners are a lot like PC's... They work great until you open Windows.


    Edited once, last by KM0201 ().

  • Thanks for the instructions how to eliminate admin!

    These are old instrutions. Anyone in the openmediavault-admin group can now be admin. Add a different user to the group and remove admin from that group and/or delete the user.

    omv 5.6.13 usul | 64 bit | 5.11 proxmox kernel | omvextrasorg 5.6.2 | kvm plugin 5.1.6
    omv-extras.org plugins source code and issue tracker - github


    Please read this before posting a question.
    Please don't PM for support... Too many PMs!

Participate now!

Don’t have an account yet? Register yourself now and be a part of our community!