HPE Community
Operating System - HP-UX
1826460 Members
3351 Online
109692 Solutions
New Discussion

Re: root login getting locked out

 
Seshan
Advisor

‎07-28-2004 08:44 PM

‎07-28-2004 08:44 PM

root login getting locked out

System is an HP9000 OS 11.11. the console is a normal terminal which is logged in most of the time... Normally one is able to login from outside via ssh, telnet as either root or any another id and then if need be change to su mode.. Once in a while the machine used to say, that id was locked in commercial database and then we had to log out of console and log back... now whether we do a logout and relogin or change passwords for root, nothing works.. there is no securetty file at all in /etc.. this forces us to work at console only, bcos even su to root privilege is being blocked, any idea on this?
0 Kudos
Reply
8 REPLIES 8
Steve Steel
Honored Contributor

‎07-28-2004 09:03 PM

‎07-28-2004 09:03 PM

Re: root login getting locked out

Hi

1)Is the box trusted


2)Exactly what message do you see

Try to login as root then show the /var/adm/syslog/syslog.log from that period

3)How is your patch level


Steve Steel
If you want truly to understand something, try to change it. (Kurt Lewin)
0 Kudos
Reply
Michael Tully
Honored Contributor

‎07-28-2004 09:15 PM

‎07-28-2004 09:15 PM

Re: root login getting locked out

You say that "id was locked in commercial database"
I've not seen this message before except in something like a system that had something like 'Etrust' loaded. So, other than what Steve has asked for, please also provide, if you can an 'swlist -a revision' output.
Anyone for a Mutiny ?
0 Kudos
Reply
Mei Jiao
Respected Contributor

‎07-28-2004 10:27 PM

‎07-28-2004 10:27 PM

Re: root login getting locked out

How about trying this:
# /usr/lbin/modprpw -k root ==> resets root passwd
# passwd root
0 Kudos
Reply
Seshan
Advisor

‎07-28-2004 11:01 PM

‎07-28-2004 11:01 PM

Re: root login getting locked out

the box is trusted, so I found.. can u tell me how this became locked all of a sudden which never happend? what are the conditions which make such a situation happen?
Can we revert to normalcy and if so how?

Rgds
0 Kudos
Reply
Steve Steel
Honored Contributor

‎07-28-2004 11:06 PM

‎07-28-2004 11:06 PM

Re: root login getting locked out

Hi

A Trusted System can be easily changed back to a standard HP-UX
system by using the Actions menu in any of the SAM Auditing subareas


Steve Steel
If you want truly to understand something, try to change it. (Kurt Lewin)
0 Kudos
Reply
Darren Prior
Honored Contributor

‎07-28-2004 11:59 PM

‎07-28-2004 11:59 PM

Re: root login getting locked out

Hi,

Although it's not a supported tool, getprpw has a man page at 11.11. It will be able to show you the reason for the lockout (expired password, too many attempts, etc.)

regards,

Darren.
Calm down. It's only ones and zeros...
0 Kudos
Reply
Muthukumar_5
Honored Contributor

‎07-29-2004 12:00 AM

‎07-29-2004 12:00 AM

Re: root login getting locked out

We can check user status using

passwd -s

# passwd -s root
PS =passworded; LK =locked; and NP =no password.

If you get LK then it is locked.

unconvert the system using SAM.

Then unlock it using,

passwd -d root

See passwd man page more

It will do the trick. Then convert into trusted as usual.
Easy to suggest when don't know about the problem!
0 Kudos
Reply
Seshan
Advisor

‎07-29-2004 01:45 AM

‎07-29-2004 01:45 AM

Re: root login getting locked out

thanks guys, managd to clear the same with a temporary reconvert to non truseted by /etc/tsconvert -r

Rgds
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.