We help IT Professionals succeed at work.

We've partnered with Certified Experts, Carl Webster and Richard Faulkner, to bring you a podcast all about Citrix Workspace, moving to the cloud, and analytics & intelligence. Episode 2 coming soon!Listen Now


Missing Secure-RPC password

Medium Priority
Last Modified: 2013-12-27

I had a user who forgot a password.  After changing it, when you log in with
that username, you get a message saying "Password does not decrypt secret key "

When you try to change the key with chkey -p, it asks for the old Secure-RPC password,
which of course no one knows.

Now, I think I can just use "nisclient -c -o username" and enter in the new password,
but I wanted to get a second opinion before I went off and did this.
Watch Question


After login, the user must run keylogin to get their credentials.

man keylogin
to learn more details.

If you still have problem, please let use know if you are using NIS or NIS+.


keylogin also requires the old password- the problem is that the user forgot
said old password, which is why I'm changing it.

As far as I can tell, we're using NIS+
If you don't know the user's password, you need to login as root to the NIS+ master server and change the user's password, here's the procedure:
(please remember to replace "user_name" with the read login name of the user
$USRID with the UID of the user)

1) reset the passwd
   nispasswd user_name
2) update NIS+  credentials
    nisaddcred -r user_name.`domainname` `domainname`

    nisaddcred -p unix.${USRID}@`domainname` -P user_name.`domainname`. des

     nisaddcred -p ${USRID} -P user_name.`domainname`. local

     man  nisaddcred
     to learn more details

3) type in:
    man nisping
    to learn more deatils.

4) wait for a few minutes (it depends on your network), the user should have no
    problem to login to the nis+ clients.
   Also have a look at the NIS+ FAQ:

   keep a copy handy, it can help you for most of your NIS+ problem.



Not the solution you were looking for? Getting a personalized solution is easy.

Ask the Experts

No comment has been added to this question in more than 21 days, so it is now classified as abandoned.
I will leave the following recommendation for this question in the Cleanup topic area:

Accept: yuzh

Any objections should be posted here in the next 4 days. After that time, the question will be closed.

EE Cleanup Volunteer

For NIS+ the correct answer is http:#16388055
Access more of Experts Exchange with a free account
Thanks for using Experts Exchange.

Create a free account to continue.

Limited access with a free account allows you to:

  • View three pieces of content (articles, solutions, posts, and videos)
  • Ask the experts questions (counted toward content limit)
  • Customize your dashboard and profile

*This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.


Please enter a first name

Please enter a last name

8+ characters (letters, numbers, and a symbol)

By clicking, you agree to the Terms of Use and Privacy Policy.