Create a Rescue Account For Security Administration
If Meridian security is incorrectly configured or assigned, even a system administrator may not have access to a vault or its configuration. To circumvent Meridian security so that the configuration or assignment can be corrected, one Windows user account may be specified with special access to a vault that bypasses all Meridian security. By default, the account that is assigned to the AutoManager EDM Server service is set as the rescue (also known as a backdoor) account unless a different account is already set.
You can log on with the rescue account to temporarily grant additional privileges (for example, Change Configuration) to roles that are assigned in the vault or to change the role assignments (for example, the Administrator role) in the vault. This is the only way to access the system if you have locked yourself out of the vault with incorrect role settings.
To create a rescue account:
- Open Registry Editor on the Meridian application server and locate the following registry key:
HKEY_LOCAL_MACHINE\SOFTWARE\Cyco
\AutoManager Meridian\CurrentVersion\OML
- On the Edit menu, point to New, and select Key. A new registry key named New Key #1 appears in the left pane. Rename it to AMServerManagerAccount.
- Make sure that AMServerManagerAccount is selected in the left pane and then double-click (Default) in the right pane. The Edit String dialog box appears.
- Type the account name (for example, BCBackDoor) in Value data and click OK.
When this key is set, the computer is assumed to be a Meridian application server and the automatic client update feature described in Upgrade Meridian Client Computers Automatically is disabled on the computer.