Unlocking Pages - Alternative to "admin" Account?

Avatar

Avatar

andrewj40704587

Avatar

andrewj40704587

andrewj40704587

05-02-2016

Hello all,

I have seen many forum posts and documentation links saying locked pages can only be unlocked by the author who locked it or the "admin" account, including [1] below. As the platform scales up, it becomes increasingly likely that users will forget to unlock pages and the "admin" has to step in. How do other companies handle unlocking pages in AEM as things scale?

 

To me, there are three obvious options: Get more admins (cost concerns), share the "admin" password with additional people such as a support team (security concerns), or find an alternative solution. Has anyone been able to find an alternative solution?

 

[1] http://blogs.adobe.com/dmcmahon/2012/06/06/cq5-5-members-of-administrators-group-not-able-to-unlock-...

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar

kunal23

MVP

Avatar

kunal23

MVP

kunal23
MVP

05-02-2016

If users forget to unlock the pages and you want other users to be able to edit those pages then you can consider the following solution- 

  • Implement a scheduled background job which will scan the content paths for the locked pages and send reminders by email to the users to unlock the page if the page modification date is more than 10 days (can be configured) old. You can also configure a report for the admin group to see the number of locked pages available under a path. 
  • If the users are no more available or can not login then you can create a new user account called as "superuser" and give that account the capability to impersonate the user accounts which are no more able to login. You don't need to share admin password as the superuser account will be able to impersonate as other users and unlock the pages on their behalf. 

Answers (6)

Answers (6)

Avatar

Avatar

charlesc6051352

Employee

Avatar

charlesc6051352

Employee

charlesc6051352
Employee

18-04-2018

Note that this solution is not working in AEM 6.3. Impersonated sessions will no be able to do unlocking.

Avatar

Avatar

Jitendra_S_Toma

Avatar

Jitendra_S_Toma

Jitendra_S_Toma

07-02-2016

Hi Andrew,

What @Kunal has suggested is a very nice approach. And, In my view, running a scheduler & query to find out what are the pages are locked and who has locked them and then report them is a long process.

In my view, this could be done in a very easy way.

  • Customize a sidekick and just like "Locking" & "Unlocking" page menu item, add another menu item "Request to unlock".
  • If you want to get it unlocked, you should request to the person who has unlocked it.
  • On "Request for unlock", send an email to the person who has locked. 

Pros: No searching, no scheduler & spamming to those who does not want to unlock their pages.

Cons: User can send request for one page at a time.

Jitendra

Avatar

Avatar

Jörg_Hoh

Employee

Total Posts

3.1K

Likes

1.1K

Correct Reply

1.1K

Avatar

Jörg_Hoh

Employee

Total Posts

3.1K

Likes

1.1K

Correct Reply

1.1K
Jörg_Hoh
Employee

06-02-2016

Hi,

I would like to add a 3rd solution to this problem:

  • Create a servlet, which uses a new admin session to unlock a page; then call this servlet from the UI and restrict access to it (e.g. bind the servlet to a resource type, create a node using this resource type and restrict access to this node).

Avatar

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Reply

2.3K

Avatar

smacdonald2008

Total Posts

12.7K

Likes

1.4K

Correct Reply

2.3K
smacdonald2008

05-02-2016

See this KB - it confirms that only the user whom locks the page or an admin account:

https://helpx.adobe.com/experience-manager/kb/UnlockALockedPage.html

So if you want more ppl to be able to unlock a page - then you will have to give admin creds to trusted employees. 

Avatar

Avatar

andrewj40704587

Avatar

andrewj40704587

andrewj40704587

05-02-2016

Hi Ratna, 

I think we're mixing two things - the "admin" user account and the "Administrators" group. I have tried adding users to the "Administrators" group as well as an author group, but they were unable to unlock pages locked by other users (most recently yesterday). I have only had success with the "admin" user account, not the "Administrators" group. 

Thanks,

Andrew

Avatar

Avatar

Ratna_Kumar

MVP

Avatar

Ratna_Kumar

MVP

Ratna_Kumar
MVP

05-02-2016

Hi Andrew,

As far as I know in the authoring prospective, those who(people) belongs to "Admin" account, they only can unlock the pages. Or else, the admin people must give the permissions to the power authors i.e., admin is added the author group.of particular author person

file

Here admin can be added to the group of the particular author. Now, the person having admin access, can unlock the page.

file\

Hope this clears your query!

Thanks,
Ratna Kumar.