# Root Account

ARKSSPR has a built-in **root** user account. This account is added for troubleshooting purposes in case it cannot be accessed with Active Directory accounts. It is a limited administrator account and can change basic settings for ARKSSPR. The activities that the root account can do are as follows.

1. Root password can be changed,
2. Can interfere with role management,
3. Can change server settings, 
   1. Grooming settings, 
   2. LDAP Settings, 
   3. E-Mail settings, 
   4. SMS settings, 
   5. Syslog settings, 
   6. Syslog message settings, 
   7. Support settings, 
   8. External API settings,
4. Displaying the MachineID information required for the license. Users with SSPR Administrators authority can change the license with an Active Directory account.

{% hint style="success" %}
The root user name is a hard-coded name and cannot be changed. Only its password is kept encrypted in the database. This password is kept irreversibly. 
{% endhint %}

Two-factor authentication is not used when logging in with the root user account. It is an account designed mostly for system recovery.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.arksspr.com/master/administration/login/root-account.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.