Solved

unix solaris 10 user error

Posted on 2015-01-12
11
259 Views
Last Modified: 2015-01-14
we just acquire a new system with windows and unix servers.  Accounts are setup through windows AD domain. There is a user that can't  login   to the a unix machine. His account was deleted and recreated with different uid and gid and then changed back to the original uid and gid. When we login as root and do:getent passwd it shows the  user twice with different uid and gid. the first entry shows with: vas:10008:10003::/export/home/user/bin/false. the second entry:  vas:10020:101::/export/home/user/bin/sh. Could this be the problem. Is there a way to fix.
0
Comment
Question by:Shen
  • 7
  • 4
11 Comments
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40545266
Correct way is to remove both accounts in AD, and re-create it with a correct uid and gid.
The simple way is if you could access root account on unix server, edit /etc/passwd file, and delete the wrong entry.
0
 

Author Comment

by:Shen
ID: 40546449
i removed the user from Windows AD. However the user still remains with two entries in the passwd file. i don't really want to edit the passwd file to remove entries especially under the root account. The top entry has  vas:10008:10003::/export/home/user/bin/false. Is there anything else i can do
0
 

Author Comment

by:Shen
ID: 40546462
when i do: getent passwd i see thes two entries but if i do;  cat passwd and cat shadow,  i don't see the entries
0
 

Author Comment

by:Shen
ID: 40546532
trying to fix this i added back the user with uid 10008 and gid10003 in AD . When I try to login in unix i get: your user id number conflicts with another user. getent passwd still shows the two entries. please help
0
 

Author Comment

by:Shen
ID: 40546601
correction now i see one entry: vas:10008:10003::/export/home/user/bin/false from getent passwd. However, i can't login with this account: i get: your user id number conflicts...
0
Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

 
LVL 16

Accepted Solution

by:
Joseph Gan earned 500 total points
ID: 40547452
Looks like you have not complately removed the user from Windows AD, before added back in.
0
 

Author Comment

by:Shen
ID: 40547463
it is removed. i also gpupdate  /force.  when i removed it and try to login i get unknown user. if i add it to AD  i get: your user id number conflicts with another user.
0
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40547573
What about "getent group uid" ?
0
 

Author Comment

by:Shen
ID: 40548793
When i left yesterday the entry was still in getent passwd. I just checked now getent passwd and the entry is gone. I don't know how this happened. Maybe a unix, ldap service that ran or from a windows service.
0
 

Author Closing Comment

by:Shen
ID: 40548799
thank you very much for your help. Please if you have any explanation as to how the entry is gone plese let know. The user was removed from AD long before it went away from getent passwd. Maybe there is a service that runs to synchronize accounts from windows to unix, i don't know.

Thanks,
0
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40549673
You are right, it takes time to push out the change. Thanks.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

My previous tech tip, Installing the Solaris OS From the Flash Archive On a Tape (http://www.experts-exchange.com/articles/OS/Unix/Solaris/Installing-the-Solaris-OS-From-the-Flash-Archive-on-a-Tape.html), discussed installing the Solaris Operating S…
Installing FreeBSD… FreeBSD is a darling of an operating system. The stability and usability make it a clear choice for servers and desktops (for the cunning). Savvy?  The Ports collection makes available every popular FOSS application and packag…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:
This video shows how to set up a shell script to accept a positional parameter when called, pass that to a SQL script, accept the output from the statement back and then manipulate it in the Shell.

920 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

12 Experts available now in Live!

Get 1:1 Help Now