default_admin fields in bloodhound.config.json change not reflected

[noraj]

Description:

an email address change is not reflected causing authentication failure

Component(s) Affected:

• UI
• API
• Neo4j
• PostgreSQL
• Data Collector (SharpHound, AzureHound)
• dockerization

Steps to Reproduce:

Clean env or docker-compose down -v

1. Take the example in https://github.com/SpecterOps/BloodHound/tree/main/examples/docker-compose
2. Edit the default_admin.email_address in bloodhound.config.json
3. docker-compose up
4. Authenticated with the configured email adress at http://127.0.0.1:8080/ui/login
5. See error in the logs
6. Authenticate with the same password but the default [email protected] email adress
7. See authentication working

Expected Behavior:

Being able to change default_admin email address else there is no point putting it in the configuration file

Actual Behavior:

changed email address is ignored

Screenshots/Code Snippets/Sample Files:

bloodhound-docker-bloodhound-1  | {"level":"info","remote_addr":"172.31.13.1:33602","proto":"HTTP/1.1","referer":"http://127.0.0.1:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/119.0","request_id":"a1c709d7-e646-4d7a-8e02-e61241b01caa","request_bytes":0,"response_bytes":49,"status":200,"elapsed":0.70143,"time":"2023-11-10T10:09:06.791310647Z","message":"GET /api/v2/saml/sso"}
bloodhound-docker-bloodhound-1  | {"level":"warn","time":"2023-11-10T10:09:06.886383402Z","message":"Writing API Error. Status: 404. Message: [{ resource not found}]"}
bloodhound-docker-bloodhound-1  | {"level":"info","remote_addr":"172.31.13.1:33602","proto":"HTTP/1.1","referer":"http://127.0.0.1:8080/ui/login","user_agent":"Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/119.0","request_id":"52a4e60f-579c-4251-8d1f-78b759fa2bee","request_bytes":102,"response_bytes":168,"status":404,"elapsed":0.520829,"time":"2023-11-10T10:09:06.886545294Z","message":"POST /api/v2/login"}

Environment Information:

BloodHound: tag latest so it seems to be 5.1.0 by the way should disclose the BH version in the docker logs for easier debugging

Collector: not relevant

OS: ArchLinux

Docker (if using Docker): Docker version 24.0.7, build afdd53b4e3; Docker Compose version 2.23.0

Additional Information:

I changed the principal_name as well but once connected is see that it wasn't reflected as well

So probably that none of the fields from default_admin is reflected.

Potential Solution (Optional):

N/A

Related Issues:

N/A

Contributor Checklist:

• I have searched the issue tracker to ensure this bug hasn't been reported before or is not already being addressed.
• I have provided clear steps to reproduce the issue.
• I have included relevant environment information details.
• I have attached necessary supporting documents.
• I have checked that any JSON files I am attempting to upload to BloodHound are valid.

[slokie-so]

Thank you for your identification of this issue, we'll be updating our documentation to better reflect the correct working order for this to work.

1. Specify the information in your bloodhound.config.json
2. update docker-compose.yml and uncomment lines 79 & 80 that specify volumes.
3. docker-compose up

Default User attributes will update with the corrected information.

Documentation will be updated shortly