-
-
Notifications
You must be signed in to change notification settings - Fork 1.9k
Disable admin token
docgalaxyblock edited this page Mar 10, 2024
·
6 revisions
Important
Your administration page will be accessible to anyone
If you have another method you would like to use for authentication to the /admin page then you can set the DISABLE_ADMIN_TOKEN variable to true. This will disable the built in ADMIN_TOKEN used for authentication while also enabling the admin panel. Anyone with access to the URL will be able to access the admin panel. You will need to take extra steps to secure it. This includes externally and locally.
docker run -d --name bitwarden \
-e DISABLE_ADMIN_TOKEN=true \
-v /vw-data/:/data/ \
-p 80:80 \
vaultwarden/server:latest- Which container image to use
- Starting a container
- Updating the vaultwarden image
- Using Docker Compose
- Using Podman
- Building your own docker image
- Building binary
- Pre-built binaries
- Third-party packages
- Deployment examples
- Proxy examples
- Logrotate example
- Overview
- Disable registration of new users
- Disable invitations
- Enabling admin page
- Disable the admin token
- Enabling WebSocket notifications
- Enabling Mobile Client push notification
- Enabling U2F and FIDO2 WebAuthn authentication
- Enabling YubiKey OTP authentication
- Changing persistent data location
- Changing the API request size limit
- Changing the number of workers
- SMTP configuration
- Translating the email templates
- Password hint display
- Disabling or overriding the Vault interface hosting
- Logging
- Creating a systemd service
- Syncing users from LDAP
- Using an alternate base dir (subdir/subpath)
- Other configuration