Managing Admin Users
FileCloud enables you to create admin roles that have a set of administrator permissions that you assign them. Users that are promoted as admin users may be assigned to any of the admin roles that you have created.
Main Admin. The admin account that is created when FileCloud is installed. There is only one Main Admin account in FileCloud.
Admin User. User accounts that can access the FileCloud admin interface.
Admin Role. Role that defines the set of admin privileges for an admin user. If admin users have multiple admin roles, they have the combined admin privileges of all of the roles.
2FA Settings for Promoted Admins
When a user is configured as an admin user, if 2FA is enabled for admins, by default, the 2FA delivery mode set for the user account (in the user's policy) is used for the Admin account. If the setting TONIDOCLOUD_2FA_ADMIN_FLOW_FOR_PROMOTED_ADMINS is enabled, the 2FA method set for administrators is used for the admin account.
To use the 2FA method set for administrators:
- Open the configuration file:
Windows: XAMPP DIRECTORY/htdocs/config/cloudconfig.php
Linux: /var/www/config/cloudconfig.php To use the 2FA method set for administrators, add the line:
define(
"TONIDOCLOUD_2FA_ADMIN_FLOW_FOR_PROMOTED_ADMINS"
,
true
);
AD Admin User Email Login Restriction
If an AD promoted admin user has the same email as the default admin, the promoted admin user cannot log in to the admin portal using their email and can only log in using their AD username.
This behavior is expected since the system cannot know that the user is trying to log in to the admin portal as a promoted admin and not as the Default admin. The system expects the admin password to be provided and since a different password is entered, authentication fails.