froi-manila

Active Member
Jan 11, 2014
25
0
51
Philippines
cPanel Access Level
Reseller Owner
Need some cPanel advice on how to fix this.

We have a client having this issue. Basically, the old cpanel password is still working. We already tried changing the password through WHM and cPanel. However, the previous password will still work.

Current cpanel version

  • CENTOS 6.8
  • v68.0.23
hope to hear from you guys.
 
Last edited by a moderator:

cPanelLauren

Product Owner
Staff member
Nov 14, 2017
13,296
1,266
313
Houston
Hello @froi-manila


First I need to point out that you are currently on an EoL version of cPanel which is not currently supported. Many security fixes and improvements have been made since v68.

Second, how is the password being changed? Have you attempted to change it through WHM and still encounter the same issue?
 

froi-manila

Active Member
Jan 11, 2014
25
0
51
Philippines
cPanel Access Level
Reseller Owner
Hi cPanelLauren

thank you for your response.

I was able to identify the root cause of this. One of the accounts from this server is set as a Reseller. Having ownership to the other accounts. I just learned from other thread that, Reseller passwords can be used for other users. It is how cpanel is designed. Can you confirm this?

Thanks again.
 

cPanelLauren

Product Owner
Staff member
Nov 14, 2017
13,296
1,266
313
Houston
Hello @froi-manila

This is correct, the reseller has access to the accounts using the reseller password. You can change this behavior by changing the selection at WHM>>Server Configuration>>Tweak Settings:

Accounts that can access a cPanel user account:
This setting specifies who can access a user’s cPanel account. Account-Owner refers to the particular reseller that owns the user account. Note: Disabling root access here will also disable root’s access to the Branding Editor in WHM.

Thanks!