A warning message will be displayed when a Liferay DXP instance, activated through Liferay Connected Services, loses it's connection for more than 1 hour. This is the connection grace period message that informs administrator users when the Liferay DXP instance will become unregistered.
Some Liferay DXP users who see this message do not have the permissions or knowledge to restore the connection to LCS. Therefore this message is not relevant for these users. Because the pop-up message appears every time a page is loaded, it will be distracting or annoying.
The connection grace period message is only displayed to users with Administrator Role.
To prevent a user from seeing this message, Liferay DXP administrators need to remove this role from the user's profile. When present, the Administrator Role will be listed in the Regular Roles category, as shown in the screenshot below.
The Administrator Role grants permission to manage the entire Liferay DXP instance, including global settings and individual Sites, Organizations, and Users. When given to users who are not familiar with system operations, such as LCS registration, it becomes a major security risk.
Some of the risks include, but are not limited to:
- Ability to change Instance Settings, intentionally or unintentionally
- Possibility of compromising admin user credentials
- Wider access to other users' data
We recommend that Liferay DXP administrators restrict permissions to users, to ensure they are able to access only the information and resources that are necessary to perform their intended actions.