Mortal user can't define new password

[jfmoreira]

Hello.


Like I did on other 15 boxes, I just defined a simple user in AIX using smitty. All configuration was set default (and compared to the other machines, no modifications).

After creating it, I set a password (like 1234) so the user can login and change his password.

The user then logs in, types the 1234 and is asked to change the password. New password is typed two times.

On the next login, AIX re-asks the same procedure, over and over, as if the new password was never typed or stored.

Any help?

Jeffo.

 

[DukeSSD]

how do they login, ssh?

 

[jfmoreira]

Either SSH or console...

Just tried logging in via console as changing my own password to the new. The new one is not stored.

 

[p5wizard]

Check password file /etc/passwd for an obvious error in a record.
Check permissions on /usr/bin/passwd command. Should have setuid set and also owned by root I think. Not at an AIX box right now. But you can compare with another box that doesn't have the same problem.

HTH,

p5wizard

 

[jfmoreira]

I just recalled, after doing it again: the file is ok and permissions are absolutely the same as the other boxes...

 

[p5wizard]

...permissions are absolutely the same as the other boxes

Also on the passwd command?

[tt]
# ls -l /usr/bin/passwd
-r-[red]s[/red]r-xr-x 1 [red]root security[/red] 27994 28 May 2008 /usr/bin/passwd
[/tt]

HTH,

p5wizard

 

[jfmoreira]

Yes...

[root@xpto]:/usr/bin # ls -latr passwd
-r-sr-xr-x 1 root security 27994 May 28 2008 passwd

 

[p5wizard]

Page through the shadow password file /etc/security/passwd and see if you can find something wrong there?


HTH,

p5wizard

 

[jfmoreira]

Did that, compared line to line. It seems to be ok....no spurious characters or entries... <:|

 

[psi07004]

Take a look at /etc/security/user. Search for the user name you are having a problem with. There is a parameter (forget which) that can be set to require the user to reset their password each time they login. Suggest you look at each item set for this user and check the definitions at the top of the file. Or, compare with a user in the file that works ok, should be one item that stands out.

If it with all users, take a look at the defaults right after the comment section. You could compare this to a system that works ok.

Hope this helps....

 

[jfmoreira]

Everything fine with the etc/security/user...but I did find another problem: ulimit "file (blocks) = 1" for the user (jfm user).

No matter how, I cannot manage to change the fsize to a bigger size, when root.

I believe that is related to the problem...
using "chuser fsize=2097151 jfm" where jfm is the user that won't record the new password.

Also tried removing and including the user again to no avail.

Thanks.

 

[jfmoreira]

That´s weird. Also checked /etc/security/limits. It was the correct fsize there. Anyway, changed to fsize=-1, saved and logout/login, it then saved the passwd!