Re: root login at console not possible

Rainer von Bongartz · ‎12-14-2005

Problem is: root cannot login at console
login falling back to new login prompt without further message

GenericSysName [HP Release B.11.11]
Console Login: root
Password:

GenericSysName [HP Release B.11.11]
Console Login: root
Password:

enabling pam debug thru syslogd, the debug shows:

PAM: load_modules: /usr/lib/security/libpam_unix.1
PAM: pam_get_username(ux)
load_function: successful load of pam_sm_acct_mgmt
PAM: pam_mapping_in_use()
PAM: pam_get_username(ux)
PAM: pam_mapping_in_use()
PAM: pam_acct_mgmt: error General Commercial Security error

What is a General Commercial Security error ??

login using ssh is possible.

Regards
Rainer

He's a real UNIX Man, sitting in his UNIX LAN making all his UNIX plans for nobody ...

Luk Vandenbussche · ‎12-14-2005

Rainer,

Is it only on the console or also through a telnet login?

Rainer von Bongartz · ‎12-14-2005

Luk,

it's only on console. telnet is disabled, but ssh tru putty is no problem

Regards
rainer

He's a real UNIX Man, sitting in his UNIX LAN making all his UNIX plans for nobody ...

Robert-Jan Goossens · ‎12-14-2005

Hi Rainer,

Does the file /etc/securetty exist ?
---
On a trusted system, login allows superuser to log in on the console unless /etc/securetty exists and does not contain console.
---

Best regards,
Robert-Jan

baiju_3 · ‎12-14-2005

Hi ,

Check your /etc/securetty settings .It should have an entry "console" in it.

thx,
bl.

Good things Just Got better (Plz,not stolen from advertisement -:) )

Rainer von Bongartz · ‎12-14-2005

Hi Robert-Jan,

/etc/securetty does not exist.

I also found out that NO login is possible at console, even for non-root users

Regards
Rainer

He's a real UNIX Man, sitting in his UNIX LAN making all his UNIX plans for nobody ...

baiju_3 · ‎12-14-2005

create /etc/security with following permissions and add console in that .

adedd05p:root [/tempbkp/copy_area/adedd13n.11.11-bkp] ll /etc/securetty
-rw-r--r-- 1 root sys 8 Sep 18 2001 /etc/securetty

Good things Just Got better (Plz,not stolen from advertisement -:) )

baiju_3 · ‎12-14-2005

create /etc/security with following permissions and add console in that .

ll /etc/securetty
-rw-r--r-- 1 root sys 8 Sep 18 2001 /etc/securetty

Good things Just Got better (Plz,not stolen from advertisement -:) )

baiju_3 · ‎12-14-2005

create /etc/securetty with following permissions and add console in that .

ll /etc/securetty
-rw-r--r-- 1 root sys 8 Sep 18 2001 /etc/securetty

Good things Just Got better (Plz,not stolen from advertisement -:) )

Rainer von Bongartz · ‎12-14-2005

etc/security does not change the behaviour

Rainer

He's a real UNIX Man, sitting in his UNIX LAN making all his UNIX plans for nobody ...

john korterman · ‎12-14-2005

Hi Rainer,

just guessing - and it may not be the cause - but is this line:

console:t_devname=console:t_maxtries#777:chkent:
tty:t_devname=tty:chkent:

included in /tcb/files/ttys ?

regards,
John K.

it would be nice if you always got a second chance

john korterman · ‎12-14-2005

Sorry, I meant this line:

console:t_devname=console:t_maxtries#777:chkent:

Regards,
John K.

it would be nice if you always got a second chance

Rainer von Bongartz · ‎12-14-2005

Hi John,

Bingo, /tcb/files/ttys did not exist on this box.

I copied from another server an login at console is possible

Thanks and Regards
Rainer

He's a real UNIX Man, sitting in his UNIX LAN making all his UNIX plans for nobody ...

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Forums

Discussions

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: root login at console not possible

root login at console not possible