Hi All ,We have a requirement where we need to remove read access of Aem admin user under /home so that it will not be able to impersonate. Is it possible as I can see while removing the rights it again gets created.Any hint will be much appreciated.Thanks in advance!
You will never be able to satisfy that requirement.
The 'admin' user is a super user that cannot be modified.
Note 'admin' and an 'Administrator' are NOT the same thing at all.
Also seek to understand the WHY behind that requirement -- so so so many features require jcr:read on /home
It is not possible, admin is a special user, you can't alter it#s permissions