Solved

unix solaris 10 user error

Posted on 2015-01-12
11
250 Views
Last Modified: 2015-01-14
we just acquire a new system with windows and unix servers.  Accounts are setup through windows AD domain. There is a user that can't  login   to the a unix machine. His account was deleted and recreated with different uid and gid and then changed back to the original uid and gid. When we login as root and do:getent passwd it shows the  user twice with different uid and gid. the first entry shows with: vas:10008:10003::/export/home/user/bin/false. the second entry:  vas:10020:101::/export/home/user/bin/sh. Could this be the problem. Is there a way to fix.
0
Comment
Question by:Shen
  • 7
  • 4
11 Comments
 
LVL 16

Expert Comment

by:Joseph Gan
Comment Utility
Correct way is to remove both accounts in AD, and re-create it with a correct uid and gid.
The simple way is if you could access root account on unix server, edit /etc/passwd file, and delete the wrong entry.
0
 

Author Comment

by:Shen
Comment Utility
i removed the user from Windows AD. However the user still remains with two entries in the passwd file. i don't really want to edit the passwd file to remove entries especially under the root account. The top entry has  vas:10008:10003::/export/home/user/bin/false. Is there anything else i can do
0
 

Author Comment

by:Shen
Comment Utility
when i do: getent passwd i see thes two entries but if i do;  cat passwd and cat shadow,  i don't see the entries
0
 

Author Comment

by:Shen
Comment Utility
trying to fix this i added back the user with uid 10008 and gid10003 in AD . When I try to login in unix i get: your user id number conflicts with another user. getent passwd still shows the two entries. please help
0
 

Author Comment

by:Shen
Comment Utility
correction now i see one entry: vas:10008:10003::/export/home/user/bin/false from getent passwd. However, i can't login with this account: i get: your user id number conflicts...
0
Free Trending Threat Insights Every Day

Enhance your security with threat intelligence from the web. Get trending threat insights on hackers, exploits, and suspicious IP addresses delivered to your inbox with our free Cyber Daily.

 
LVL 16

Accepted Solution

by:
Joseph Gan earned 500 total points
Comment Utility
Looks like you have not complately removed the user from Windows AD, before added back in.
0
 

Author Comment

by:Shen
Comment Utility
it is removed. i also gpupdate  /force.  when i removed it and try to login i get unknown user. if i add it to AD  i get: your user id number conflicts with another user.
0
 
LVL 16

Expert Comment

by:Joseph Gan
Comment Utility
What about "getent group uid" ?
0
 

Author Comment

by:Shen
Comment Utility
When i left yesterday the entry was still in getent passwd. I just checked now getent passwd and the entry is gone. I don't know how this happened. Maybe a unix, ldap service that ran or from a windows service.
0
 

Author Closing Comment

by:Shen
Comment Utility
thank you very much for your help. Please if you have any explanation as to how the entry is gone plese let know. The user was removed from AD long before it went away from getent passwd. Maybe there is a service that runs to synchronize accounts from windows to unix, i don't know.

Thanks,
0
 
LVL 16

Expert Comment

by:Joseph Gan
Comment Utility
You are right, it takes time to push out the change. Thanks.
0

Featured Post

How to run any project with ease

Manage projects of all sizes how you want. Great for personal to-do lists, project milestones, team priorities and launch plans.
- Combine task lists, docs, spreadsheets, and chat in one
- View and edit from mobile/offline
- Cut down on emails

Join & Write a Comment

Using libpcap/Jpcap to capture and send packets on Solaris version (10/11) Library used: 1.      Libpcap (http://www.tcpdump.org) Version 1.2 2.      Jpcap(http://netresearch.ics.uci.edu/kfujii/Jpcap/doc/index.html) Version 0.6 Prerequisite: 1.      GCC …
Java performance on Solaris - Managing CPUs There are various resource controls in operating system which directly/indirectly influence the performance of application. one of the most important resource controls is "CPU".   In a multithreaded…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

772 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now