Some users not in /etc/ftpusers cannot FTP

[JohnnyW]

Any usernames that have been created recently, or have been changed (ie passwords have been changed) cannot ftp to the AIX 4.3.2.0 server. Previously they could.

I have checked /etc/ftpusers and the usernames that cannot ftp are not listed there. There are no other access files (ftpaccess, ftphosts, etc).

 

[christos]

any ftp.deny files look in /etc/security/ or find /etc -name *deny*
are perms on ftpusers ok?

 

[JohnnyW]

I figured it out and it is a very simple problem.

When a new user hasn't logged in yet and are required to change their password (flags = ADMCHG in /etc/security/passwd) then they can't ftp.

The flag is also changed to ADMCHG when root changes a users password.

Because of firewall restrictions we always use ssh instead of telnet and ssh doesn't prompt to change the password on first time logins, so this flag never goes away. I have the users connect with ssh then telnet to local host and it prompts them to change the password and everything works like a charm.

Thanks for the suggestions.