HPE Community
Operating System - HP-UX
1834625 Members
3264 Online
110069 Solutions
New Discussion

Re: Root account disabled

 
SOLVED
Go to solution
Otto Folprecht
Advisor

‎12-07-2004 11:01 AM

‎12-07-2004 11:01 AM

Root account disabled

The root cause of the problem was that one of our systems administrators needed to increase security by logging on the UNIX box telnet sessions. In SAM the admin went into Auditing and Security – Audited Events – and then answered yes to convert to a trusted system. The outcome was an error message indicating that it cannot access rootmod file. Since then we cannot access the UNIX box as root with a message that the root account has been disabled. All other users can access the system but are being asked to change passwords. THX
0 Kudos
Reply
4 REPLIES 4
Steven E. Protter
Exalted Contributor

‎12-07-2004 11:14 AM

‎12-07-2004 11:14 AM

Solution

Re: Root account disabled

At the console

log on as root

If you have the password, that alone will reset the disabled root account. If you don't know the password proceed further.

Boot the system

interupt at the 10 second prompt.

bo
Answer Y to the Interact question.

hpux -is

mount /var
mount /usr

vi /tcb/files/auth/r/root

change:
:u_pwd=YcVZTmswL7o/.:\
to
:u_pwd=:\

Your intial entry will be different because its encrypted.

passwd

Set the root password.

You have now reset the root password.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
Con O'Kelly
Honored Contributor

‎12-07-2004 12:00 PM

‎12-07-2004 12:00 PM

Re: Root account disabled

Hi Otto

If you are already logged in as root (or else login in single user as Steven says) then you can also use:
# /usr/sam/lbin/usermod.sam -F -p "" root

This will set a null password for root and you should be able to login as root and then set a new password.

Also check root account using:
# /usr/lbin/getprpw root

Converting to a trusted system will expires all accounts.
You can avoid this using:
# /usr/lbin/modprpw -V

Cheers
Con

Reply
Hoang Chi Cong_1
Honored Contributor

‎12-07-2004 01:46 PM

‎12-07-2004 01:46 PM

Re: Root account disabled

Hi

Try to first login as 'root' from the console. If successful, then unlock the account,
run:# /usr/lbin/modprpw -k root

If can not, reboot server into single-user mode:
Stop the boot process when it says "Press any key to stop in 10 seconds". It will be on "Main Menu >" prompt.

Type "bo pri" hit Enter.
< Interact with IPL ? >
Say Y ( for yes)
You will be at "ISL>" prompt.
Type "hpux -is" hit Enter.
System will be booted in single user mode and it will be logged in as "root".
At the end of this you'll be able to change root password

Regard,

Jim
Looking for a special chance.......
0 Kudos
Reply
Nguyen Anh Tien
Honored Contributor

‎12-07-2004 10:46 PM

‎12-07-2004 10:46 PM

Re: Root account disabled

Otto.
Let take care that In single mode,passwd command only run when you already mounted /var and /usr (as S.E.P saying).
mount /var
mount /usr
tienna
HP is simple
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.