topic Re: root passwd in Operating System - HP-UX

root passwd

augusto cossa — Mon, 04 Jun 2001 12:36:32 GMT

Hi,

Is there anybody who can help me on how to login to a server running hp-ux 10.20 if we forgot the root passwd.

your help will be appreciated.
Augusto

Re: root passwd

Tracey — Mon, 04 Jun 2001 12:40:43 GMT

you will need to reboot into single user mode. This will put you at the OS prompt, and then you can change the password to something, and then reboot into normal mode.

Re: root passwd

Bill McNAMARA_1 — Mon, 04 Jun 2001 12:41:57 GMT

Ctrl-B from the system console
type RS to reset the server
During power on self test, type CO to regain console, wait for the prompt asking for 10sec to press any key. press a key.
You get to
Command Menu : Main Menu >
type BO to boot from pri boot path
Choose Y to interact with ISL
at ISL> prompt
load the kernel with
hpux -is
to start in isingle user mode
There is no passwd prompt.
id
you are root
passwd root
enter new root password.

If you don't get the 10s prompt you'll have to flick a dipswitch on the m/board.

Later,
Bill

Re: root passwd

Tommy Brown — Mon, 04 Jun 2001 12:41:58 GMT

A brute force method is to power off, then boot to single user..
Thats the only way that I know..
Tommy

Re: root passwd

Patrick Wallek — Mon, 04 Jun 2001 14:31:23 GMT

All these methods will work as long as your system is not a trusted system and you do not have the option turned on to force you to enter the root password to get into single-user mode. If that is the case, I don't know what other options you have.

Re: root passwd

Rita C Workman — Mon, 04 Jun 2001 15:03:46 GMT

Just so you have this too....here's how to fix this on a trusted system:
===================================
Date : 2001 Jan 18
Description : Unknown root password on trusted system.
Document Id : KBRC00005199

If the cust untrusts his system then he can change the password and then simply make his system trusted again. It is done as follows:

It is possible to untrust the system by doing the following:

From the SAM menu, I selected Auditing and Security -->
Audited Events --> Actions --> Unconvert System.

This allows the cust to change his root password using the passwd command. The cust is then free to make his system a trusted one again through SAM.

/rcw

Re: root passwd

Patrick Wallek — Mon, 04 Jun 2001 15:06:24 GMT

Another good point to make, especially in a trusted system environment, is that it is a good idea to have restricted SAM set up for a non-root user with access for that user to change passwords. Then if you ever run into a problem where roots password is inadvertently changed or forgotten, you have a user that can then go into sam and change roots password so that you can log in again.

Re: root passwd

David Allen — Tue, 05 Jun 2001 03:17:17 GMT

If the root account is disabled on a trusted system and single user mode requires the root password, try the following (this works for HP-UX 10.20, haven't tried it on an 11.0 server).

1. Power off the server

2. Insert the Recovery CD

3. Power server on, interrupt the boot process, select the CD device to boot from and interact with the IPL.

4. Type 800support (for servers) or 700support (for workstations)

5. Select [ Run a Recovery Shell ]

6. Exit to the shell prompt and mount the root ( / ) file system by typing the following, chroot_lvmdisk and follow the prompts (need to know the hardware path and device filename of the root disk).

7. Once the root file system is mounted (should be mounted on /ROOT), edit the password database for the root account.
NOTE: May need to load the vi, ex and libcurses.1 files before attempting to edit the following file.
cd /tcb/files/auth/r
cp root root.old
vi root
Remove the encrypted password string from the line that begins with :u_pwd= and save the file. The line should look like this after editing :u_pwd=:
8. Exit to the Recovery Menu and then reboot the server to single user mode. The system should request a login, type root and then just press ENTER for the password field (as it is blank). Reset the password as necessary.

Re: root passwd

Michael Tully — Tue, 05 Jun 2001 04:08:16 GMT

Hi,

Just for future reference I would suggest
you implement something like 'sudo' then
knowing the root password is not needed
all the time. Once you have access to a
tool like 'sudo' you can the root password
if required.

'sudo' can be found at
http://www.courtesan.com/sudo

hth
Michael