Can't change NIS+ password "Permission Denied"

The system is Solaris (SunOS 5.8 according to uname) and I'm trying to change a new users NIS+ password.

When logged in as root on the NIS master, I try to change the password for the user, and get:

{root}$ passwd starves
Enter root's password:
New Password:
Re-enter new Password:
Permission denied

Looking at passwd.org_dir, I see:

niscat passwd.org_dir | grep starves
starves:SZ63.is3qsDOM:156:1000:Shaun Tarves:/home/starves:/bin/sh:

There is an entry in auto_home-

{root}$ niscat  auto_home.org_dir | grep starves
starves bostonserver:/export/raid/part07/starves

And one in cred.org-

bostonserver:{root}$ niscat cred.org_dir | grep starves
starves.studsvik-analytic.com.:LOCAL:156:1000:
starves.studsvik-analytic.com.:DES:unix.156@studsvik-analytic.com:9f6563e26e7ab86e459cf63d1b2e16a38ca70a9f0d4522de:b2bb8849db94f70c45cde121e4e24c3934cae1510bfb8191ab78880f82a69f9

Anyone have any idea how I can actually change this user's password so he can log in?
Patrick_BaldwinAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

jlevieCommented:
Are you attempting to do this on the NIS+ master server, or on a workstation?
Patrick_BaldwinAuthor Commented:
I'm logged into the the NIS+ master server, as root.
jlevieCommented:
I just remembered... Use nispasswd instead of passwd

And the user will have to use chkey -p to update their key
Introduction to R

R is considered the predominant language for data scientist and statisticians. Learn how to use R for your own data science projects.

yuzhCommented:
jlevie is correct, you can use:

nispasswd user_name

to set the user password (change the root password need to
follow the procedure in the FAQ)

if you don't want to let the user worry about to type in
chkey -p

You need to do: (extract from my old script)

nisaddcred -p unix.${USRID}@your-nis+-domain -P ${NAME}.your-nis+-domain.
 des
 
nisaddcred -p ${USRID} -P ${NAME}.your-nis+-domain. local

/usr/lib/nis/nisping

Print a copy of the following NIS+ FAQ to heep it handy:

http://www.eng.auburn.edu/users/rayh/solaris/NIS+_FAQ.html

If you play a lot with NIS+, I suggest you to install Solstice (GUI), it will make life easier
for you to manage the NIS+ database.

Happy new year to all of you, cheers !
Patrick_BaldwinAuthor Commented:
Sorry, nispasswd has the same problem, and I've looked at the faq already.  I'll look into installing solstice, but there's no way I'll
be able to install it anytime soon.

Any other ideas?
jlevieCommented:
Is it possible that root's credentials are invalid. That would happen if the root password changed after NIS+ was set up. You might try a 'chey -p' and root and then try nispasswd.
yuzhCommented:
try to do the followings to reset the passwd

passwd -r nisplus -l  myusr
nisping -C org_dir
passwd -r nisplus -s myusr
passwd -r nisplus myusr

If you still have problem, make the password that starts with an alphabetical
character see if it can help, also make the passwd
length <= 8 chars.

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
Patrick_BaldwinAuthor Commented:
Should I do the "chkey -p" first, and then try yuzh's suggestions, should I try yuzh's suggestions first?

Also, at the moment the password starts with an alphabetical character, is 8 characters, and the one I was trying
to change it to meets those requirements as well.
jlevieCommented:
Try yuzh's suggestion first. If that also fails with a  permission denied try chkey for root.
yuzhCommented:
You need to make sure the root's credentials are valid first, otherwise
you can't modify any thing for NIS+ database.

I suggest you to following the procedures in:
http://www.eng.auburn.edu/users/rayh/solaris/NIS+_FAQ.html#3.10

to use the current password to reset the root password first, then do
http:#15583200
yuzhCommented:
jlevie,
     You type faster than me.

     Happy New Year, cheers! (our 2nd day of year 2006 now)

yuzh
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Unix OS

From novice to tech pro — start learning today.