Disable user 1 edit
1,090 sites
Security covered
This module prevents any user, even administrators, from editing the first user account (user ID 1). This is a security measure to prevent accidental or malicious takeover of the super administrator account.
Disable user 1 edit module makes it so that that all operations on user 1 is disabled.
Why?
Well, if a role has the permission "administer users", this by default includes user 1. If they can edit user 1, then they can also edit their email and password. If they can edit their email and password, then they can take over the account, and therefore they can also gain additional privileges than their current role.
If you want to enable users to administer users without risking them editing user 1, then you need this module.