No user with full admin rights left 🙈

I’m afraid I did something stupid .
On a newly installed Grafana instance I created a new user, granted it admin rights and finally deleted the default “admin” user.
Now, after some work on different panels I noticed, that I’m not allowed to install plugins and add new users or edit existing users. In another instance I found that there are two admin roles, “Grafana Admin” and admin on organization level. Probably I missed to grant one of these rights (not sure which one is missing in my case).

Is there a way to re-gain full admin rights?
I asked ChatGPT and it recommended to change the rights directly in the Grafana database (grafana.db). Feels a bit to adventurous to me.
Is there a better way?

I’m using Grafana 11.2.0

Christian

how many dashboards do you have and do you have any fancy alerts and other features?

It’s 5 dashboards, nothing too fancy, just some work to rebuild the dashboards.

I assume your suggestion is to have a fresh, new Grafana installation?
I mean, it’s deleting exiting data and restart the respective container.

If nobody has an easier way?

Isn’t that a gap in Grafana? Is there a reason why one should be able to delete the last user with full admin rights?

Yes I could see this as a gap indeed. do you have a backup of your grafana backend? or is there a gap there

Actually I do daily backups. But since one of the 1st things I do is to delete the default user with an easy to guess name (of course only after I have created another user with full admin rights - usually ), the backup will not help me.
I would have to pick a pretty old one that would be close to a fresh installation. I even think the 1st backup only happened after removing the “admin” user.

Anyhow, since I can export the dashboards and import them later, the best way is probably to start from the beginning.

Does anybody know if it is possible to file somewhere the suggestion that Grafana should not permit deleting of the last user with full admin rights?

Try to use sec. config:

[security]
# disable creation of admin user on first start of grafana
disable_initial_admin_creation = false

# default admin user, created on startup
admin_user = admin

# default admin password, can be changed before first start of grafana, or in profile settings
admin_password = admin

# default admin email, created on startup
admin_email = admin@localhost

and restart a Grafana.

It may (or may not, depends on implementation) recreate that admin user.

also recommend you have 2 instances. one where you play in/tinker/test and one when you don’t your production instance

I decided to to start with a fresh installation. Since I run Grafana in a Docker container it was not that difficult. I had exported the existing dashboards and imported them again in the new instance. Some manual work was needed, but not that much. So it was OK and I didn’t try other ways. But still “thank you” for the advice!

Actually I have that setup. but in this case it didn’t help since my idea was not: “let’s try to delete the only user with full admin rights and see what happens”. It was just a mistake .