https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767406#M753780 <BR />Are you sure they entered their password correctly?<BR /><BR />Once they have a failure, are they able to login on another attempt?<BR /><BR />How are they attempting to login? rlogin, telnet, ??<BR /><BR />have you checked the integrity of the tcb files?<BR /><BR />live free or die<BR />harry Thu, 18 Jul 2002 15:54:59 GMT harry d brown jr 2002-07-18T15:54:59Z https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767405#M753779 Configuration:<BR />HP-UX 10.20 Trusted w/Dec 2001 Updates<BR /><BR /> - /usr/bin/login is from PHCO_25591 dtd Nov 2001<BR /><BR /> - /usr/bin/passwd dtd Jan 1998<BR /><BR />Problem:<BR />User gets login failed after entering their password. We have checked the tcb encrypted password entry against the encrypted password and they match. The program to generate the encrypted password utilizes the internal UNIX encryption routines.<BR /><BR />This is occurring intermittently on multiple servers.<BR /><BR /> Thu, 18 Jul 2002 14:48:00 GMT https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767405#M753779 Roger Lavender 2002-07-18T14:48:00Z https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767406#M753780 <BR />Are you sure they entered their password correctly?<BR /><BR />Once they have a failure, are they able to login on another attempt?<BR /><BR />How are they attempting to login? rlogin, telnet, ??<BR /><BR />have you checked the integrity of the tcb files?<BR /><BR />live free or die<BR />harry Thu, 18 Jul 2002 15:54:59 GMT https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767406#M753780 harry d brown jr 2002-07-18T15:54:59Z https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767407#M753781 Yes, we have actually typed the pw for the user to test the login.<BR /><BR />No, once it fails the user continues to fail until the password is changed or the suthorization number is regened.<BR /><BR />Login via telnet.<BR /><BR />Yes, integrity visually verified.<BR /><BR />"Kill the meat...save the metal"<BR /><BR />Roger Thu, 18 Jul 2002 16:11:36 GMT https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767407#M753781 Roger Lavender 2002-07-18T16:11:36Z https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767408#M753782 Are these long passwords (more than 8 characters)? If so, long passwords are silently truncated in untrusted systems. So a password of: abcd1234verylong is the same as abcd1234 for untrusted. On a trusted system, entering abcd1234verylong results in a different password encryption than the 8 character version. <BR /><BR />Also, does the user password contain any special characters such as @ or #? If so, then the password will probably work OK with su but not with login. This is due to the default stty values prior to a login where the backspace key does not erase anything but the # key does. You can change this setting by:<BR /><BR />stty erase "^H" kill "^U" &lt; /dev/ttyconf <BR /><BR />Put this command into a startup script in /sbin/init.d and link to it from the runlevel directories. Here's a few more details:<BR /><BR /><A href="http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x5936c4c76f92d611abdb0090277a778c,00.html" target="_blank">http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0x5936c4c76f92d611abdb0090277a778c,00.html</A><BR /><BR /> <BR /> Thu, 18 Jul 2002 17:15:53 GMT https://community.hpe.com/t5/operating-system-hp-ux/login-failed/m-p/2767408#M753782 Bill Hassell 2002-07-18T17:15:53Z