HPE Community
Operating System - HP-UX
1834512 Members
1999 Online
110068 Solutions
New Discussion

Re: not allowed to run passwd

 
tigm7103105q1
Contributor

‎06-13-2003 02:57 PM

‎06-13-2003 02:57 PM

not allowed to run passwd

Hi! I'm Marcos, and I need your help.

I've a HP9000 D270 and Operating System HP-UX 10.20 in Trusted System (TCB), when I assign an administrative number a any user with "/usr/lbin/modprpw -x username" and they enter for firts time, the System say follow:

Your password was changed by conif on Thu Jan 1 00:00:00 GMT 1970
Last successful login for prueba: Fri Jun 13 21:59:32 GMT 2003
Last unsuccessful login for prueba: Fri Jun 13 22:17:57 GMT 2003 on ttyp9
You don't have a password.
Enter your user number here: 613
Last successful password change for prueba: NEVER
Last unsuccessful password change for prueba: Fri Jun 13 18:03:17 2003

passwd: not allowed to run passwd
Login aborted due to no password.
0 Kudos
Reply
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎06-13-2003 03:20 PM

‎06-13-2003 03:20 PM

Re: not allowed to run passwd

Darn I though I replied to this thread.

There is a solution linked in this thread.

http://forums.itrc.hp.com/cm/QuestionAnswer/1,,0xddf6585fae8bd711abdc0090277a778c,00.html

Also, check the permissions on passwd

That program needs suid root so it can update a file, /etc/passwd and the tcb files owned by root.

Also, as root, attempt passwd prueba

That should work.

sEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
Michael Steele_2
Honored Contributor

‎06-13-2003 03:46 PM

‎06-13-2003 03:46 PM

Re: not allowed to run passwd

For different password security utilities with trusted systems use SAM.

"Account for users and groups" -> "users"

Select "root" (or others accounts you want to
modify), select "Action"->"Modify security policies"->"Password aging". Or modify as "disable"
Support Fatherhood - Stop Family Law
0 Kudos
Reply
Sridhar Bhaskarla
Honored Contributor

‎06-13-2003 04:45 PM

‎06-13-2003 04:45 PM

Re: not allowed to run passwd

Hi,

As Steven suggested, look at the permissions on the passwd executable. It should have a suid bit set.

I have seen trusted systems bumping out errors to ordinary users due to no passwords. Instead of using -x with modprpw, do

Just enabling in case it is disabled
#/usr/lbin/modprpw -k user
#passwd user

Set some initial password and let he user use it login and change the password.

If it still does not work, then it is most probably due to the permissions on the password executable.

-Sri
You may be disappointed if you fail, but you are doomed if you don't try
0 Kudos
Reply
Caesar_3
Esteemed Contributor

‎06-13-2003 10:44 PM

‎06-13-2003 10:44 PM

Re: not allowed to run passwd

Hello!

Check your permissions of passwd that it
have suid on, maybe you or some one else
change it.
The passwd must have the suid because it made
operations that only root can make.

Caesar
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.