HPE Community
Operating System - HP-UX
1847279 Members
2563 Online
110263 Solutions
New Discussion

Re: ShadowPassword issue

 
SOLVED
Go to solution
Ramones
Frequent Advisor

‎08-16-2007 01:49 AM

‎08-16-2007 01:49 AM

ShadowPassword issue

Hello everybody

I have here a situation that I need help to clarify...
I have a machine that gives this error when I try to access Users area in SAM:
There is an inconsistency between the file "/etc/passwd" and the file "/etc/shadow". Login "daemon" has no corresponding entry in the file "/etc/shadow". This can be corrected by running "pwconv(1M)" command.
Re-enter Users subarea after correcting this problem.

I then ran the pwconv command and get te following error:
The system cannot be converted to use shadow passwords until the ShadowPassword product is installed.

I thought I could install the ShadowCopy sw and try againn but requires reboot and it's not possible now.

I also realized that I've changed the root password and now I can't login even though I got the "password sucessufully changed" message...I think the problems are related but I'm totally sure.
I can access the machine only through one other that had ssh keys generated and copied somewhere in time.

I've also tried pwunconv but...
sh: pwunconv: not found.

So...what should I do with this mess?


Thanks in advance
Valente
0 Kudos
Reply
5 REPLIES 5
RobinKing
Valued Contributor

‎08-16-2007 02:17 AM

‎08-16-2007 02:17 AM

Re: ShadowPassword issue

Can you clear up whether you do or don't have root access?

You don't have the ShadowPassword product installed right?
Confirm with "swlist -l product | grep -i shadow"

Try cat'ing both /etc/passwd and /etc/shadow and check that the number of lines/entries match "cat /etc/passwd | wc -l; cat /etc/shadow | wc -l"




0 Kudos
Reply
Robert-Jan Goossens
Honored Contributor

‎08-16-2007 03:00 AM

‎08-16-2007 03:00 AM

Solution

Re: ShadowPassword issue

Hi Valente,

First be sure that the shadow password fileset is not installed and the /etc/passwd file contains the encrypted passwd entry.

# swlist -l fileset ShadowPW.SHADOW
# cat /etc/passwd

If you are sure.
# mv /etc/shadow /etc/old.shadow

abd try resseting the root passwd.

Robert-Jan
Reply
Steven E. Protter
Exalted Contributor

‎08-16-2007 03:10 AM

‎08-16-2007 03:10 AM

Re: ShadowPassword issue

Shalom,

Login "daemon" has no corresponding entry in the file "/etc/shadow"

I don't think this is a very big problem. The user daemon is not supposed to log on anyway.

However the fact the system does not recognize that shadowpasswords is installed is more serious.

I recommend finding it and running swremove on it. I see a good method for finding it in a previous post.

After that, reinstall, assuring you have run md5 checkum against the depot and matching it to http://software.hp.com md5 checksum.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
Reply
whiteknight
Honored Contributor

‎08-16-2007 03:22 AM

‎08-16-2007 03:22 AM

Re: ShadowPassword issue

Hi Ramones,

Since you do not have shadow password product installed
See
http://www.software.hp.com/portal/swdepot/displayProductInfo.do?
productNumber=ShadowPassword or search for "shadow password" on
www.software.hp.com for more information on the Shadow Passwords product,

#mv /etc/shadow /tmp
this should fix the issue

WK
Problem never ends, you must know how to fix it
Reply
Ramones
Frequent Advisor

‎08-16-2007 03:44 AM

‎08-16-2007 03:44 AM

Re: ShadowPassword issue

Hi all

I am definitely not having a good day...
I removed the /etc/shadow file and it worked, as logic tells us. The thing is I thought I had tried it before, but I made a cp instead of a mv ...so I went to check it out and I still had the original file there...

More...
I don't have the ShadowPassword instaled and now I ain't going to install it anymore. Still I already had the depot ready in the machine..
I had root access because of the ssh keys...

(I hope I had replied to all your kind questions). I will assign points.


Thanks,
R
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.