Solved

root password locked, need root password recovery without shutting down to single user

Posted on 2008-06-12
10
1,634 Views
Last Modified: 2013-12-06
Hi

This is urgent.  

I need to login as root to my Itanium HP-UX urgently to collect/copy
some data which is owned by root:sys.

The root password seemed locked & when I go to the physical
console to login, it does not prompt me for new password at
all but only says :

Account is disabled - see Account Administrator

A friend thinks it's possible to connect up to the serial DB9 port
on the server to reset the root password.  It prompted for MX
login but I don't even know what's the id/password for this as
I just took over from a colleague who left
0
Comment
Question by:sunhux
  • 7
  • 3
10 Comments
 

Author Comment

by:sunhux
ID: 21767047
Correction : it's MP login.

I heard I need to invoke some sort of SAM utility after login to
this service processor on serial port to activate back root
account.

I can't shutdown to single user as system is production
0
 
LVL 17

Assisted Solution

by:ExcelGuide
ExcelGuide earned 500 total points
ID: 21767055
if it is locked down you could try the following:
Remove or disconnect all bootable devices from the system, including all LAN cables. When the box tries to boot, there will be no bootable devices and it will jump to the boot admin menu where you can turn off the special code to not allow boot interrupts. Then power off the unit, reconnect the disks and LANs, and boot up again, now interrupting the boot process.
0
 

Author Comment

by:sunhux
ID: 21767056

Also, this is a trusted computing server ie /etc/shadow is
not there.
0
 

Author Comment

by:sunhux
ID: 21767071


The suggestion given by url below won't work as it's not an ordinary account that
I'm trying to reactivate & also I can't even login as root at the
physical console - need something at the MP login to do this.

http://www.unix.com/hp-ux/25319-re-enabling-locked-root-account-trusted-hp-ux.html
0
 

Author Comment

by:sunhux
ID: 21767107

I could now get past the MP login using factory default id & password.

Now what to do next to recover the OS root password?
0
Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

 

Author Comment

by:sunhux
ID: 21767154
Hi,

I can't disconnect cables etc, this is a running production server & I can only bring it
down over the weekend but even then, it's not going to be proper shutdown - have
to do abrupt power off / on, right?

Below is the MP screen shot, what to do next?  :


MP login: admin      |        
MP password: ********                    

       Hewlett-Packard Integrated Lights-Out HP Integrity and HP 9000        
| system, or in the course of system mai                  

    (c) Copyright Hewlett-Packard Company 1999-2006.  All Rights Reserved.            |                                                            

                              Revision E.03.30tem expressly consents to such monitoring  |  


 ********************************************************              
                         MP ACCESS IS NOT SECURE
 Default MP users are currently configured and remote access is enabled.            
  Modify default users passwords or delete default users (see UC command)
|-----------------------------------------------------------------|    
                                    OR                        

)******************************************************        
         CO: Console---                
        VFP: Virtual Front Panel                                
         CM: Command Menu      

* This system is
         CL: Console Lognly authorised users are
         SL: Show Event Logs                            
         HE: Main Help Menu
          X: Exit Connection

[mp001a4b0aabeb] MP> CO



        (Use Ctrl-B to return to MP main menu.)



- - - - - - - - - - Prior Console Output - - - - - - - - - -
.............. (complete)
loading symbol table
loading System Directory (boot.sys) to MFS
....
loading MFSFILES directory (bootfs) to MFS
.....................
Launching /stand/vmunix
SIZE: Text:30730K + Data:7146K + BSS:5380K = Total:43257K


- - - - - - - - - - - - Live Console - - - - - - - - - - - -
0
 
LVL 17

Accepted Solution

by:
ExcelGuide earned 500 total points
ID: 21767190
0
 

Author Comment

by:sunhux
ID: 21767388

Thanks Psychotes but it looks like we still need to reboot the server using
the method given.  HP has called me back to say I will need to reboot &
there's no way to recover without shutting to single user or reboot.

well, well, that's the problem with too secure a system
0
 
LVL 17

Assisted Solution

by:ExcelGuide
ExcelGuide earned 500 total points
ID: 21767490
that's too bad to hear...I tried looking for more options, but I cannot seem to find any solutions. I guess if the technical support of HP also says to reboot then the chance of finding another solution would be small....

anyway good luck!!
0
 

Author Comment

by:sunhux
ID: 21768296
Thanks
0

Featured Post

Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

Join & Write a Comment

Suggested Solutions

Article by: btan
The intent is not to repeat what many has know about Ransomware but more to join its dots of what is it, who are the victims, why it exists, when and how we respond on infection. Lastly, sum up in a glance to share such information with more to help…
Every server (virtual or physical) needs a console: and the console can be provided through hardware directly connected, software for remote connections, local connections, through a KVM, etc. This document explains the different types of consol…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.
In a previous video, we went over how to export a DynamoDB table into Amazon S3.  In this video, we show how to load the export from S3 into a DynamoDB table.

708 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now