S8300/G700 CM5 cannot access via ASA Emulation or GEDI 1

[Phoneguy15]

Trying to make some simple changes for some users and am unable to access the system.
When logging in via ASA Emulation all I get is a 'bash'linux prompt.

Anyone have any ideas how to get back to SAT?
I get the same thing when I try to access via putty/ssh as well as when I try GEDI

Thanks in advance!

-Todd

 

[AvayaTier3]

ssh port 22 or telnet port 23 are access to Linux bash

change your port to ssh 5022 or telnet 5023 and you will get to SAT Command:

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

Thanks for the reply!
The ASA/Emulation connection is set to use port 5023. But I am still getting the bash prompt.
When I try to change it to use port 5022 all I get is this: "SSH-2.0-OpenSSH_3.9p1+sftplogging-v1.2"

-Todd

 

[AvayaTier3]

Make sure the server IP is for the active CM server and not the standby
test this with putty and try all the ports before troubleshooting the ASA
also make sure the login you are using.. "dadmin" is enabled in the customer options,
if Enable 'dadmin' Login? n you will be able to login to bash, but not SAT.

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

It is a stand alone s8300 with no standby.
I have tried using putty with the same results.
I have tried with multiple login's (dadmin & cust) with the same results.
I checked to make sure that dadmin is enabled via the web admin since I am able to access the web admin via that login.

-Todd

 

[Phoneguy15]

ok, I was able to access the sat by using a telnet session via dadmin.
I then entered "/opt/ws/dsat" at the -bash- prompt and was able to get in to a sat interface.
I still need to get the SAT interface available via ASA for the customer to make name changes and other minor things.

-Todd

 

[AvayaTier3]

can you do "sat" or "autosat" and get to the SAT from Linux bash?

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

sat" and "autosat" both return with "command not found"

-Todd

 

[AvayaTier3]

try "statapp" and see if CM is running

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

Entered "statapp" at the -bash- prompt and recieved "command not found", however I know CM is running since I can check it from the Web interface.
Also, the customer is not encountering any service interruptions.
This is what I'm seeing via the Web Interface:

View Process Status Results


Watchdog 18/18 UP SIMPLEX
TraceLogger 3/ 3 UP SIMPLEX
slotmon 1/ 1 UP SIMPLEX
LicenseServer 3/ 3 UP SIMPLEX
SME 7/ 7 UP SIMPLEX
MasterAgent 1/ 1 UP SIMPLEX
MIB2Agent 1/ 1 UP SIMPLEX
MVSubAgent 1/ 1 UP SIMPLEX
LoadAgent 1/ 1 UP SIMPLEX
FPAgent 1/ 1 UP SIMPLEX
INADSAlarmAgen 1/ 1 UP SIMPLEX
GMM 4/ 4 UP SIMPLEX
SNMPManager 1/ 1 UP SIMPLEX
filesyncd 8/ 8 UP SIMPLEX
MCD 1/ 1 UP SIMPLEX
CommunicaMgr 59/59 UP SIMPLEX



-Todd

 

[AvayaTier3]

from Linux bash, after successful login.. run these 4 commands and post output

pwd
echo $PATH
env
id


A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

Output
pwd:
/

echo $PATH:
/user/local/bin:/bin:/user/bin:/usr/X11R6/bin

env:
REMOTEHOST=10.37.218.171
HOSTNAME=cvillage1
SHELL=/bin/bash
TERM=ansi
HISTSIZE=1000
USER=dadmin
LS_COLORS=no=00:fi=00:di=01;34:ln=01;36i=40;33:so=01;35:bd=40;33;01:cd=40;33;0
1r=01;05;37;41:mi=01;05;37;41:ex=01;32:*.cmd=01;32:*.exe=01;32:*.com=01;32:*.b
tm=01;32:*.bat=01;32:*.sh=01;32:*.csh=01;32:*.tar=01;31:*.tgz=01;31:*.arj=01;31:
*.taz=01;31:*.lzh=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.gz=01;31:*.bz2=01;31:*
.bz=01;31:*.tz=01;31:*.rpm=01;31:*.cpio=01;31:*.jpg=01;35:*.gif=01;35:*.bmp=01;3
5:*.xbm=01;35:*.xpm=01;35:*.png=01;35:*.tif=01;35:
MAIL=/var/spool/mail/dadmin
PATH=/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin
INPUTRC=/etc/inputrc
PWD=/
LANG=C
SHLVL=1
HOME=/var/home/dadmin
LOGNAME=dadmin
LESSOPEN=|/usr/bin/lesspipe.sh %s
G_BROKEN_FILENAMES=1
_=/bin/env

id:
uid=1004(dadmin) gid=555(susers) groups=555(susers),10002(prof2),10018(prof18)



Thanks,
-Todd

 

[AvayaTier3]

dadmin login has no environment and is logging into / as home
instead of /var/home/dadmin

do you have another working login that works in Linux bash?

If so, try it.

Then from Linux bash:

cmuserdel dadmin
cmuseradd dadmin
cmpasswd dadmin

then login again with dadmin

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[AvayaTier3]

dadmin@s8730-b> id
uid=1005(dadmin) gid=555(susers) groups=555(susers),10002(prof2)
dadmin@s8730-b> env
SFTP_PERMIT_CHOWN=1
HOSTNAME=s8730-b
TERM=vt100
SHELL=/bin/bash
HISTSIZE=1000
SFTP_LOG_LEVEL=3
SSH_CLIENT=::ffff:192.168.1.136 32926 22
PERL5LIB=/opt/ecs/lib/perl
OLDPWD=/var/home/dadmin
SSH_TTY=/dev/pts/0
SFTP_LOG_FACILITY=2
USER=dadmin
LS_COLORS=no=00:fi=00:di=01;34:ln=01;36i=40;33:so=01;35:do=01;35:bd=40;33;01:cd=40;33;01r=40;31;01:ex=01;32:*.tar=01;31:*.tgz=01;31:*.arj=01;31:*.taz=01;31:*.lzh=01;31:*.zip=01;31:*.z=01;31:*.Z=01;31:*.gz=01;31:*.bz2=01;31:*.deb=01;31:*.rpm=01;31:*.jar=01;31:*.jpg=01;35:*.jpeg=01;35:*.gif=01;35:*.bmp=01;35:*.pbm=01;35:*.pgm=01;35:*.ppm=01;35:*.tga=01;35:*.xbm=01;35:*.xpm=01;35:*.tif=01;35:*.tiff=01;35:*.png=01;35:*.mov=01;35:*.mpg=01;35:*.mpeg=01;35:*.avi=01;35:*.fli=01;35:*.gl=01;35:*.dl=01;35:*.xcf=01;35:*.xwd=01;35:*.ogg=01;35:*.mp3=01;35:*.wav=01;35:
USERNAME=
MAIL=/var/spool/mail/dadmin
PATH=/opt/ecs/bin:/opt/ecs/sbin:/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/var/home/dadmin/bin:/var/home/dadmin/bin
LOG_SFTP=1
INPUTRC=
PWD=/var/home/dadmin
EDITOR=/bin/vi
LANG=C
FCEDIT=/bin/vi
PS1=\u@\h>
SHLVL=1
SFTP_PERMIT_CHMOD=1
HOME=/var/home/dadmin
BASH_ENV=/var/home/dadmin/.bashrc
LOGNAME=dadmin
VISUAL=/bin/vi
SSH_CONNECTION=::ffff:192.168.1.136 32926 ::ffff:172.16.2.44 22
LESSOPEN=|/usr/bin/lesspipe.sh %s
SFTP_UMASK=
G_BROKEN_FILENAMES=1
_=/bin/env
dadmin@s8730-b> echo $PATH
/opt/ecs/bin:/opt/ecs/sbin:/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/var/home/dadmin/bin:/var/home/dadmin/bin
dadmin@s8730-b> pwd
/var/home/dadmin
dadmin@s8730-b> ls -altr
total 23156
-rwx------ 1 dadmin susers 4731 Jan 20 2009 .bashrc
-rwx------ 1 dadmin susers 3314 Jan 20 2009 .bash_profile
-rwx------ 1 dadmin susers 2 Oct 11 2010 .history
drwx------ 2 dadmin susers 4096 Dec 19 2013 .ssh
drwxrwxr-x 25 root root 4096 Jun 18 14:14 ..
drwx------ 3 dadmin susers 4096 Aug 31 16:28 .
-rw------- 1 dadmin susers 11506 Sep 4 11:16 .bash_history


A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[Phoneguy15]

Unfortunatly none of the logins are working. They all return the '-bash-' prompt.
I tried setting up a new login via the web interface but everytime I login it forces me to set a PIN.
Every PIN that I try to enter is rejected and then I'm disconnected.
I am certain I have tried itterations that conform to the PIN requirements but they are still rejected.

I did log in to the linux -bash-3.00$ prompt with a different login than dadmin and tried running "cmuserdel dadmin" & "cmuseradd dadmin". and both returned "-bash: cmuserxxx: command not found"


-Todd

 

[AvayaTier3]

I can fix this for you. You will need a modem connected to the server before you contact me.

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[montyzummer]

if you can get into linux forget about cm the bash command run the command "userlock unlock" .... have not read all the replys but i dont think thats been mentioned ,

then navigate to /var/home/ and try the user add cli already posted.

APSS (SME)
ACSS (SME)
ACIS (UC)

 

[AvayaTier3]

the problem here is that the /var/home/dadmin folder is not owned by dadmin and "cmuserdel dadmin" will not delete /var/home/dadmin if it's not owned
by dadmin.
"userlock unlock" will not fix this. The user is already logged in as dadmin and cannot access basic definity shell commands due to not having the
correct environment that is set by user profiles.



A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]

 

[montyzummer]

apologies misread and missed the ownership issue , he needs you to asg his asss to root and resolve.... well worth the suggestion of him getting in touch if you ask me

APSS (SME)
ACSS (SME)
ACIS (UC)

 

[AvayaTier3]

dadmin@s8730-b> which cmuseradd
alias cmuseradd='/usr/bin/sudo /opt/ecs/bin/cmuseradd'
        /usr/bin/sudo
dadmin@s8730-b> which cmuserdel
alias cmuserdel='/usr/bin/sudo /opt/ecs/bin/cmuserdel'
        /usr/bin/sudo

Here is an example of one that is broken:
NOTE: dadmin is not owned by dadmin, cannot be deleted or added without root
      /var/home/remote is broken as well, but remote login is for PPP and will
      not change to it's home directory on login.
      1001 is an orphaned userid. Not related to lognames in /etc/passwd
      These permissions and ownership do not allow dadmin to get to $HOME to execute 
      proper .bash files to setup CM environment.

[root@s8730-b ~]# ls -l /var/home
total 24
drwx------  2 [b][COLOR=#CC0000]1001[/color][/b] susers 4096 Jul 25 17:17 dadmin
drwxrwxr-x  3 root susers 4096 Jul 28 12:23 defty
drwx------  2 dial remote 4096 Jan 22  2008 dial
drwxrwxr-x  6 root root   4096 Jul  1 12:44 ftp
drwx------  2 dial remote 4096 Jul 25 17:15 remote

with root "chown -R dadmin.susers /var/home/dadmin" will fix this. Then "cmuserdel dadmin"
then "cmuseradd dadmin"

A great teacher, does not provide answers, but methods to teach others "How and where to find the answers"

bsh

40 years Bell, AT&T, Lucent, Avaya
Tier 3 for 30 years and counting
[URL unfurl="true"]http://bshtele.com[/url]