HPE Community
Operating System - HP-UX
1837090 Members
2541 Online
110112 Solutions
New Discussion

Re: Rescue a trusted system

 
SOLVED
Go to solution
YLTan
Frequent Advisor

‎02-04-2003 08:17 PM

‎02-04-2003 08:17 PM

Rescue a trusted system

Hi,

I just acquire a system with trusted sys setup.
the root passwd was wrong and the root account got disabled. I don't have another terminal logged in as root.

How do i rescue this system!!!?? Any idea would be helpful.
tyl
0 Kudos
Reply
7 REPLIES 7
suki
Frequent Advisor

‎02-04-2003 08:32 PM

‎02-04-2003 08:32 PM

Re: Rescue a trusted system

Hi,
If the single user mode password restriction is not set at the time of converting into Trusted system U can reset the password only by entering into Single user Mode . For that u need to cold boot the Server.
The other and final alternative is u need to call the HP Responce Center.
- suki
Reply
Michael Tully
Honored Contributor

‎02-04-2003 08:36 PM

‎02-04-2003 08:36 PM

Solution

Re: Rescue a trusted system

Basically, you'll need to reboot the system in single user mode. You will then be root and you can change the password. You will also need to unlock root's account regardless of whether you can login or not.

# passwd root (change the password)
# mount /usr
# /usr/lbin/modprpw -k root

Put the system into multi-user mode.
One further probelm could be encountered. If the system is using as part of it's security in it's general user account policies (see 'sam') the "Require Login Upon Boot to Single-User State" box checked. If it does it makes this more difficult.
Anyone for a Mutiny ?
Reply
Steven E. Protter
Exalted Contributor

‎02-04-2003 08:39 PM

‎02-04-2003 08:39 PM

Re: Rescue a trusted system

Its possible you might have to hack it to fix it. If you don't care about the data, get a Core HP-UX media and rinstall the OS.

However if root password is not set, you can boot to single user mode.

restart the box
interupt the startup at the 10 second prompt

bo
enter

Interact with IPL Y

hpux -is
enter

passwd at the prompt

P
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Rajeev Shukla
Honored Contributor

‎02-04-2003 09:01 PM

‎02-04-2003 09:01 PM

Re: Rescue a trusted system

Hi Even if the root account is disabled it will allow you to login from the console terminal.
If you have a webconsole or a direct terminal console connected to the server try loging in from there if you know the root password and after you haved loged it you can enable the account by
/usr/lbin/modprpw -k root

But if you dont remember the password the only way it to reboot the server, intrupt the boot process and boot through single user mode by typing
hpux -is
and after it comes to single user mode change the password using /sbin/passwd root
(dont use /usr/bin/passwd as it will ask for old password)
After this you can either reboot the server or bring to multi user mode by init 3

Cheers
Rajeev
Reply
RAC_1
Honored Contributor

‎02-04-2003 09:06 PM

‎02-04-2003 09:06 PM

Re: Rescue a trusted system

You have following options.

boot into single user mode and reset the password.

boot into single user mode and it asks for password(if bootpw flag has been set) give it and reset.

may be your password is more than 8 chars long. ty giving only 8 chars and check.

you have remsh/rlogin from another machines.
There is no substitute to HARDWORK
Reply
T G Manikandan
Honored Contributor

‎02-04-2003 09:16 PM

‎02-04-2003 09:16 PM

Re: Rescue a trusted system

If the account got disabled just because there was more unsuccessful login attempts,you can still log on from the console.

Else you can also do

1.boot into single user mode
by
interrupting the boot sequence

interact with IPL
IPL>hpux -is

2./usr/lbin/tsconvert -r
untrust the system

3.Remove the encrypted password entry of root from /etc/passwd

4.Again make the system trusted by
/usr/lbin/tsconvert

reboot the system

Thanks
Reply
donne007
Regular Advisor

‎02-04-2003 10:47 PM

‎02-04-2003 10:47 PM

Re: Rescue a trusted system

Hello
What T.g Says is the best option of unconverting the trusted system and the other way is to remove the shadowed password. in the file
# /tcb/files/auth/r/root
Delete the Entries correspondig to
:u_pwd=

Good Luck
Asif
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.