• Please be aware: Kaspersky Anti-Virus has been deprecated
    With the upgrade to Plesk Obsidian 18.0.64, "Kaspersky Anti-Virus for Servers" will be automatically removed from the servers it is installed on. We recommend that you migrate to Sophos Anti-Virus for Servers.
  • The Horde webmail has been deprecated. Its complete removal is scheduled for April 2025. For details and recommended actions, see the Feature and Deprecation Plan.
  • We’re working on enhancing the Monitoring feature in Plesk, and we could really use your expertise! If you’re open to sharing your experiences with server and website monitoring or providing feedback, we’d love to have a one-hour online meeting with you.

Forwarded to devs No password reset for additional admin accounts

K

Kaspar

API expert
Plesk Guru
Username:

TITLE

No password reset for additional admin accounts

PRODUCT, VERSION, OPERATING SYSTEM, ARCHITECTURE

CentOS 7.9, Plesk 18.0.41

PROBLEM DESCRIPTION

When using the "Forgot your password?" feature on the login-screen for a "Additional administrator account" no reset email is send. So an additional administrator who forgot his/her password is unable to reset it.

Looking at Tools & Settings > Task Manager shows
SUCCESS2022-02-02 15:09:11reset-password

Looking at Tools & Settings > Action Log shows
2022-02-02 15:09:11123.123.123.123Password reset requestLogin Name: '' → testuser
Reset using: '' → Username
...

There is no reference in the mail log of a password reset mail.

STEPS TO REPRODUCE

1. Create a "Additional administrator account"
2. Logout of Plesk
3. Go to login-screen, click "Forgot your password?" link
4. Fill in email address or user name from the additional administrator account created a step 1

ACTUAL RESULT

No email received to reset password.

EXPECTED RESULT

Get an email to reset password.

ANY ADDITIONAL INFORMATION

Thanks to user @JohnBos for noticing this bug.

YOUR EXPECTATIONS FROM PLESK SERVICE TEAM

Confirm bug
 
Since Plesk Onyx, the option to reset the password via email was disabled for the Plesk administrator accounts for security reasons: https://support.plesk.com/hc/en-us/articles/360017069199

The bug PPPM-12977 is already created to improve such behaviour: The email should be sent with information that password for Plesk administrators cannot be reset for security reasons and instructions on how to reset it correctly.
No ETA is available for its implementation now.
 
You must log in or register to reply here.

Similar threads

P
Outgoing Mail Control permission denied on CentOS
Replies
8
Views
425
Sebahat.hadzhi
Sebahat.hadzhi
P
Forwarded to devs Event 'CP User Login' triggered despite invalid additional authentication step (MFA)
Replies
2
Views
706
Kaspar@Plesk
Kaspar@Plesk
P
Cannot login to Plesk Support
Replies
15
Views
4K
Peter Debik
P
Frank.P
Statistics never reset, always grow up and when change month still growing
Replies
1
Views
679
Peter Debik
P
K
Resolved Placeholders for reseller resource overuse notices don't work
Replies
3
Views
813
Hangover2
Hangover2
Back
Top