Hello everyone,
I have a realm that contains two resolvers.
The first resolver works normally for standard users.
The second resolver contains only one user, and this is the user that I want to promote to an administrator.
To achieve this, I created a policy with scope: admin, using the built-in template “superuser” which is described as “an administrator who is allowed to do everything”.
The policy is defined with the following conditions:
-
Realm:
my_realm -
User:
my_user -
Resolver:
resolver2(this is the resolver where the admin user exists)
However, when I log in with this user, PrivacyIDEA loads the regular user WebUI and not the administrator interface. In other words, the policy is not being applied even though the user matches the realm and resolver correctly.
I would appreciate any help or guidance on:
-
Why the admin policy is not being applied , what do I need to define?
-
Whether admin policies require additional conditions (Admin-Realm / Admin-Resolver) that are not documented clearly.