Good ideas on here and I'd go with creating a new user and seeing if that user can log in.
You may find out that you need to re-enable the account your having issues with. If on 11.31 it's a lot different administrating user accounts. Instead of using "modprpw" type commands that were simple for troubleshooting you need to use "userdbxxx" commands.
Try this for kicks to see if it helps:
From ILO logged into console as root user:
userdbset -d -u bergi auth_failures (Assuming bergi is the username your having issues with.)
If you find no users can get in then:
It’s been a while but here are a few things to check out off top of my head.
If you don’t want to use DNS any longer then move out the /etc/nswitch.conf file so it’s not read any longer. The default at mention is only an example so won’t work without putting in correct DNS information. This also goes in the /etc/resolv.conf file where you could run a “nslookup” on the IP you put in there if using DNS to see if it resolves correctly. So if using DNS both these files should be populated, if not then neither should exist and /etc/hosts will be used.
SFTP my guess is working but not all your pc’s have the client software installed to connect?
LDAP I would bet you are not using it. I just worked on getting it configured here on our Itanium servers and told first Fiserv client to do this (Fiserv would not assist without an engagement and we felt didn’t have the knowledge for us to pay them…I worked directly with HP). It’s slick and way cool but extremely complex in some areas but working great so far.
If you want to just test something check out your /etc/inted.conf file. If done correctly you should see either commented out lines and or code showing FTP/Telnet listed in here. This is where you disable various protocols and or implement them to be available. If you do make a change save original copy (use comments too so you have code needed to disable/enable say telnet as an example). If you want “telnet” enable be sure it’s uncommented or it defaults to only SSH.
You will have to bounce the listener in order for the change to take effect. They say you can use the “inetd –c” command to have the kernel updated but this command had issues a while back might be better now. Can test it but if doesn’t re-read in the changes then bounce as shown below. This will cut off Internet Services during that short time if bounced rather than re-read using “inted –c”.
# date
Thu Aug 29 10:17:00 EDT 2013
# ll -d /etc/inetd.conf
-rw-r--r-- 1 root sys 6737 Aug 23 13:04 /etc/inetd.conf
# ps -ef | grep -i inetd | grep -v grep
root 24621 1 0 10:15:04 ? 0:00 /usr/sbin/inetd -l
# inetd -c
# ps -ef | grep -i inetd | grep -v grep
root 24621 1 0 10:15:04 ? 0:00 /usr/sbin/inetd -l
# /sbin/init.d/inetd stop
Internet Services stopped
# ps -ef | grep -i inetd | grep -v grep
# /sbin/init.d/inetd start
Internet Services started
# ps -ef | grep -i inetd | grep -v grep
root 24656 1 0 10:17:50 ? 0:00 /usr/sbin/inetd -l
#
Thanks, Mike
Legalize Freedom
