https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344263#M191352 the box is trusted, so I found.. can u tell me how this became locked all of a sudden which never happend? what are the conditions which make such a situation happen?<BR />Can we revert to normalcy and if so how?<BR /><BR />Rgds Thu, 29 Jul 2004 06:01:42 GMT Seshan 2004-07-29T06:01:42Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344259#M191348 System is an HP9000 OS 11.11. the console is a normal terminal which is logged in most of the time... Normally one is able to login from outside via ssh, telnet as either root or any another id and then if need be change to su mode.. Once in a while the machine used to say, that id was locked in commercial database and then we had to log out of console and log back... now whether we do a logout and relogin or change passwords for root, nothing works.. there is no securetty file at all in /etc.. this forces us to work at console only, bcos even su to root privilege is being blocked, any idea on this? Thu, 29 Jul 2004 03:44:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344259#M191348 Seshan 2004-07-29T03:44:53Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344260#M191349 Hi<BR /><BR />1)Is the box trusted<BR /><BR /><BR />2)Exactly what message do you see<BR /><BR />Try to login as root then show the /var/adm/syslog/syslog.log from that period<BR /><BR />3)How is your patch level<BR /><BR /><BR /> Steve Steel Thu, 29 Jul 2004 04:03:47 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344260#M191349 Steve Steel 2004-07-29T04:03:47Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344261#M191350 You say that "id was locked in commercial database" <BR />I've not seen this message before except in something like a system that had something like 'Etrust' loaded. So, other than what Steve has asked for, please also provide, if you can an 'swlist -a revision' output. Thu, 29 Jul 2004 04:15:06 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344261#M191350 Michael Tully 2004-07-29T04:15:06Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344262#M191351 How about trying this:<BR /># /usr/lbin/modprpw -k root ==&gt; resets root passwd<BR /># passwd root Thu, 29 Jul 2004 05:27:19 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344262#M191351 Mei Jiao 2004-07-29T05:27:19Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344263#M191352 the box is trusted, so I found.. can u tell me how this became locked all of a sudden which never happend? what are the conditions which make such a situation happen?<BR />Can we revert to normalcy and if so how?<BR /><BR />Rgds Thu, 29 Jul 2004 06:01:42 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344263#M191352 Seshan 2004-07-29T06:01:42Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344264#M191353 Hi<BR /><BR /> A Trusted System can be easily changed back to a standard HP-UX<BR /> system by using the Actions menu in any of the SAM Auditing subareas<BR /><BR /><BR /> Steve Steel Thu, 29 Jul 2004 06:06:54 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344264#M191353 Steve Steel 2004-07-29T06:06:54Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344265#M191354 Hi,<BR /><BR />Although it's not a supported tool, getprpw has a man page at 11.11. It will be able to show you the reason for the lockout (expired password, too many attempts, etc.)<BR /><BR />regards,<BR /><BR />Darren. Thu, 29 Jul 2004 06:59:38 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344265#M191354 Darren Prior 2004-07-29T06:59:38Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344266#M191355 We can check user status using <BR /><BR /> passwd -s <USERNAME><BR /> <BR /> # passwd -s root<BR /> PS =passworded; LK =locked; and NP =no password.<BR /><BR /> If you get LK then it is locked.<BR /><BR /> unconvert the system using SAM.<BR /><BR /> Then unlock it using,<BR /><BR /> passwd -d root<BR /><BR /> See passwd man page more<BR /><BR /> It will do the trick. Then convert into trusted as usual.</USERNAME> Thu, 29 Jul 2004 07:00:02 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344266#M191355 Muthukumar_5 2004-07-29T07:00:02Z https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344267#M191356 thanks guys, managd to clear the same with a temporary reconvert to non truseted by /etc/tsconvert -r<BR /><BR />Rgds Thu, 29 Jul 2004 08:45:21 GMT https://community.hpe.com/t5/operating-system-hp-ux/root-login-getting-locked-out/m-p/3344267#M191356 Seshan 2004-07-29T08:45:21Z