HPE Community
Operating System - HP-UX
1826597 Members
3665 Online
109695 Solutions
New Discussion

Re: How to reset root passwrod when no console is available!!

 
SOLVED
Go to solution
astra
Frequent Advisor

‎11-01-2009 08:38 PM

‎11-01-2009 08:38 PM

How to reset root passwrod when no console is available!!

Hi,

This is really a weird problem and its really weird to ask.

The thing is we dont have console access or ILO to the server and the server root access is blocked because of multiple attempts of unauthorized login. We have another user which is not blocked but it has limited privilages.

Could anyone suggest how to reactivate the root user?

Thanks in advance!!

Regards,
Amit
0 Kudos
Reply
13 REPLIES 13
Michael Steele_2
Honored Contributor

‎11-01-2009 09:01 PM

‎11-01-2009 09:01 PM

Solution

Re: How to reset root passwrod when no console is available!!

Hi

What is the model of the server?

Start looking at hyperterminal in a laptop and connecting the the box. There is always a serial console connection.
Support Fatherhood - Stop Family Law
Reply
astra
Frequent Advisor

‎11-01-2009 09:06 PM

‎11-01-2009 09:06 PM

Re: How to reset root passwrod when no console is available!!

Hi Michael,

The thing is server is placed at customer site and some of them on the site has blocked the root access to the server. They also dont have much knowledge about the HP-UX servers. They are not able to access the server through console.

Therefore, we are trying to do it remotely.

The model is RX2660.

Any help will be highly appreciable.

Regards,
Amit
0 Kudos
Reply
Michael Steele_2
Honored Contributor

‎11-01-2009 09:16 PM

‎11-01-2009 09:16 PM

Re: How to reset root passwrod when no console is available!!

Hi

...and no.

http://docs.hp.com/en/AA-XCHWP-32u2/A-XCHWP-32u2.pdf

They will need to find the MP serial connection and MP reset button. I've attached a doc above - seach on hyperterminal and serial.

Here are the basics

Connect the CONSOLE connector to a null modem cable, and connect the null modem
cable to the PC COM1 port on your laptop.

Use a terminal emulator, such as HyperTerminal, to open a terminal window.


Press the Enter key to access the MP. If there is no response, press the MP reset pin on the back of the MP and try again.
Support Fatherhood - Stop Family Law
Reply
Kapil Jha
Honored Contributor

‎11-01-2009 09:18 PM

‎11-01-2009 09:18 PM

Re: How to reset root passwrod when no console is available!!

M afraid but i don see any feasible way to do it remotely.

You have to have serial console and change it.

BR,
Kapil+
I am in this small bowl, I wane see the real world......
Reply
Johnson Punniyalingam
Honored Contributor

‎11-01-2009 09:22 PM

‎11-01-2009 09:22 PM

Re: How to reset root passwrod when no console is available!!

>>
They also dont have much knowledge about the HP-UX servers. They are not able to access the server through console.

Therefore, we are trying to do it remotely.<<

How are you trying to connect remotely?

VPN - to Server with "IP address" ?

You need try some other ways like

Ask the customer do they have any root equalatent User account ?

Can they try "rlogin"

If no Choice, Some one should go ONSITE

Use dump terminal/ Connect laptop via serial cable try to login to server using console


Problems are common to all, but attitude makes the difference
Reply
astra
Frequent Advisor

‎11-01-2009 10:08 PM

‎11-01-2009 10:08 PM

Re: How to reset root passwrod when no console is available!!

Hi All,

Thanks for your valuable time and info.

John: We are using VPN to connect remotely.

I all ask someone to go onsite.

Regards,
Amit
0 Kudos
Reply
Torsten.
Acclaimed Contributor

‎11-01-2009 11:11 PM

‎11-01-2009 11:11 PM

Re: How to reset root passwrod when no console is available!!

You can do this remotely if you have access to the iLO/MP.

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
Reply
Michael Steele_2
Honored Contributor

‎11-01-2009 11:28 PM

‎11-01-2009 11:28 PM

Re: How to reset root passwrod when no console is available!!

Hi

You know Torsten is absolutely right and I assumed you weren't configured since you asking. The only catch is it has to be configured before you can telnet or web console into it.

If you refer to the link in my previous posting around page 26 plus and minus
Support Fatherhood - Stop Family Law
Reply
Bill Hassell
Honored Contributor

‎11-02-2009 06:29 AM

‎11-02-2009 06:29 AM

Re: How to reset root passwrod when no console is available!!

This is a very common oversight when managing remote systems. You are crippled without access to the real console. You need to configure access before agreeing to manage a remote system. However, the console (actually, a separate processor in modern HP-UX systems) has poor security and should not be placed on the same subnet as normal traffic. If you have a secure serial console concentrator available, then multiple consoles can be accessed with good security. Without console access, any actions requiring a reboot or interaction with the boot ROMs will be impossible.


Bill Hassell, sysadmin
Reply
Torsten.
Acclaimed Contributor

‎11-02-2009 06:48 AM

‎11-02-2009 06:48 AM

Re: How to reset root passwrod when no console is available!!

"... has poor security ...".

OK, some require an additional license for ssh. you should get them.

Hope this helps!
Regards
Torsten.

__________________________________________________
There are only 10 types of people in the world -
those who understand binary, and those who don't.
__________________________________________________
No support by private messages. Please ask the forum!

If you feel this was helpful please click the KUDOS! thumb below!   
Reply
D. Jackson_1
Honored Contributor

‎11-02-2009 02:54 PM

‎11-02-2009 02:54 PM

Re: How to reset root passwrod when no console is available!!

Are you backing the server up?
Is the system trusted?

You could always get a copy of the password file, (backup and restore) edit what you need to null the password out (back it up)and (restore) overwrite the password file with the modified one. Same would go for the root entry of a trusted system.
We threw in this scenario just testing it and it worked for us.

Good luck.
Reply
astra
Frequent Advisor

‎11-02-2009 07:10 PM

‎11-02-2009 07:10 PM

Re: How to reset root passwrod when no console is available!!

Thanks you all for the overwhelming responses.

The system is going to be in production in this month. Therefore, someone will go to onsite and make the things working.

Thanks once again to you all and i ll get in touch again, in case of any problem.

Regards,
Amit
0 Kudos
Reply
Olivier Masse
Honored Contributor

‎11-02-2009 08:29 PM

‎11-02-2009 08:29 PM

Re: How to reset root passwrod when no console is available!!

Besides ensuring you have a workable MP/iLO, especially at a remote site, it's always better (in my opinion) to elevate your privileges using sudo or RBAC to become root, using your own personal password, instead of doing a plain "su -". This leaves you a failsafe if someone changes or forgets the root password, as you just need to log in with your own account to reset it, or have another privileged admin do it for you.

I almost never use the root password except when I install a brand new system. It is kept in a safe place and reserved for emergencies.

Not publishing the password also prevents breaking the "imputability chain" of your admins, whatever that means. This will help you put your security auditors in pure bliss.

Just my two cents.
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.