Jellyfin Forum
SOLVED: Lost admin account - Printable Version

+- Jellyfin Forum (https://forum.jellyfin.org)
+-- Forum: Support (https://forum.jellyfin.org/f-support)
+--- Forum: Troubleshooting (https://forum.jellyfin.org/f-troubleshooting)
+--- Thread: SOLVED: Lost admin account (/t-solved-lost-admin-account)

Pages: 1 2

RE: Lost admin account - M N - 2025-05-22

(2025-05-22, 02:16 AM)bitmap Wrote: Uninstalling leaves information behind that you should remove.

Find the paths here: https://jellyfin.org/docs/general/administration/configuration/#server-paths

If you're not concerned about losing info, uninstall, remove that directory entirely, reinstall.

Another user I helped today edited their DB and nixed all of the users, which allowed them to set up a new admin account.

I’ll check the other directories, thank you! I certainly don’t mind losing info, I just got started with Jellyfin recently and I’m just using it as an open source alternative for home/travel use. However, DB edits seem like it would be the perfect solution to being sure it’s resolved - I just haven’t been able to figure it out. I’d very much appreciate help on that, too, if it worked for them.

RE: Lost admin account - veleek - 2025-11-16

This won't apply to everyone but hopefully it'll help a few people out.

I lost access to my admin account by enabling the SSO plugin -  9p4/jellyfin-plugin-sso: This plugin allows users to sign in through an SSO provider (such as Google, Microsoft, or your own provider). This enables one-click signin.

Signing in using the SSO method overwrote the user permissions on my account causing me to lose admin privs, even when re-signing in again using the original auth method (because the accounts were linked).  I had opted to not setup the user/admin role bindings during my initial setup of the SSO provider (PocketId in my case)

So, the fix: I could still get into the config files and was able to find the SSO plugin config at ./config/plugins/configurations/SSO-Auth.xml.  It had something like this:

Code:
        <PluginConfiguration>
          <OidEndpoint>https://id.example.com</OidEndpoint>
          <OidClientId>redacted</OidClientId>
          <OidSecret>redacted</OidSecret>
          <Enabled>true</Enabled>
          <EnableAuthorization>true</EnableAuthorization>
          <EnableAllFolders>true</EnableAllFolders>
          <EnabledFolders />
          <AdminRoles /> // <-- Empty!!
          <Roles />
          ...other stuff...

Since it's trivial for me to modify the configuration for PocketId, I ensured that my user was in at least one group, and then I updated the <AdminRoles/> element to 

Code:
          <AdminRoles>
            <string>my-admin-group-name</string>
          </AdminRoles>
          <Roles>
            <string>my-admin-group-name</string> // <--- This might not be necessary
          </Roles>

The next time I logged in, I was granted the admin role by way of the appropriate group and I could access the dashboard again.