First admin login
Log in with the wizard admin, harden the password, enable your own 2FA, and keep registration closed until ready.
First admin login
After the wizard and a service restart, open:
https://YOUR-DOMAIN/login
Sign in with the admin email and password from the wizard Admin step.
Do this on day one
1. Confirm Admin opens — left sidebar should show Files, Users, Servers, Settings, and the rest.
2. Use a strong password — change it under Manage account if the wizard password was temporary or reused.
3. Enable 2FA on your own account — Manage account → Settings (authenticator / TOTP). This is your personal admin 2FA.
4. Member 2FA policy is separate — Admin → Settings → Mods → Security controls whether members get off / optional / mandatory 2FA. Do not turn on mandatory for everyone before your own authenticator works.
5. Keep registration closed until email, captcha, and limits look right (see First week setup order).
Who is admin?
The wizard account is your break-glass operator. Create extra staff carefully. Never paste the license key or .env into public tickets.
Common problems
Password fails
Wrong email, caps lock, or a different hostname than the one you installed. Password reset needs working mail — if mail is not configured yet, fix SMTP/sendmail first or reset from the server.
Logged in but not admin
You used a normal member account. Use the wizard admin email.
Locked out by 2FA
Mandatory member 2FA or your own TOTP without a working authenticator needs a server-side recovery. Set up personal 2FA only after the authenticator app confirms a code.