Solved

unix solaris 10 user error

Posted on 2015-01-12
11
264 Views
Last Modified: 2015-01-14
we just acquire a new system with windows and unix servers.  Accounts are setup through windows AD domain. There is a user that can't  login   to the a unix machine. His account was deleted and recreated with different uid and gid and then changed back to the original uid and gid. When we login as root and do:getent passwd it shows the  user twice with different uid and gid. the first entry shows with: vas:10008:10003::/export/home/user/bin/false. the second entry:  vas:10020:101::/export/home/user/bin/sh. Could this be the problem. Is there a way to fix.
0
Comment
Question by:Shen
  • 7
  • 4
11 Comments
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40545266
Correct way is to remove both accounts in AD, and re-create it with a correct uid and gid.
The simple way is if you could access root account on unix server, edit /etc/passwd file, and delete the wrong entry.
0
 

Author Comment

by:Shen
ID: 40546449
i removed the user from Windows AD. However the user still remains with two entries in the passwd file. i don't really want to edit the passwd file to remove entries especially under the root account. The top entry has  vas:10008:10003::/export/home/user/bin/false. Is there anything else i can do
0
 

Author Comment

by:Shen
ID: 40546462
when i do: getent passwd i see thes two entries but if i do;  cat passwd and cat shadow,  i don't see the entries
0
Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 

Author Comment

by:Shen
ID: 40546532
trying to fix this i added back the user with uid 10008 and gid10003 in AD . When I try to login in unix i get: your user id number conflicts with another user. getent passwd still shows the two entries. please help
0
 

Author Comment

by:Shen
ID: 40546601
correction now i see one entry: vas:10008:10003::/export/home/user/bin/false from getent passwd. However, i can't login with this account: i get: your user id number conflicts...
0
 
LVL 16

Accepted Solution

by:
Joseph Gan earned 500 total points
ID: 40547452
Looks like you have not complately removed the user from Windows AD, before added back in.
0
 

Author Comment

by:Shen
ID: 40547463
it is removed. i also gpupdate  /force.  when i removed it and try to login i get unknown user. if i add it to AD  i get: your user id number conflicts with another user.
0
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40547573
What about "getent group uid" ?
0
 

Author Comment

by:Shen
ID: 40548793
When i left yesterday the entry was still in getent passwd. I just checked now getent passwd and the entry is gone. I don't know how this happened. Maybe a unix, ldap service that ran or from a windows service.
0
 

Author Closing Comment

by:Shen
ID: 40548799
thank you very much for your help. Please if you have any explanation as to how the entry is gone plese let know. The user was removed from AD long before it went away from getent passwd. Maybe there is a service that runs to synchronize accounts from windows to unix, i don't know.

Thanks,
0
 
LVL 16

Expert Comment

by:Joseph Gan
ID: 40549673
You are right, it takes time to push out the change. Thanks.
0

Featured Post

Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Linux : can't create transaction lock error 1 77
dot directory in FreeBSD??? 4 88
Correct syntax to upload file in a script using sftp 2 90
Access_log 17 151
I have been running these systems for a few years now and I am just very happy with them.   I just wanted to share the manual that I have created for upgrades and other things.  Oooh yes! FreeBSD makes me happy (as a server), no maintenance and I al…
Java performance on Solaris - Managing CPUs There are various resource controls in operating system which directly/indirectly influence the performance of application. one of the most important resource controls is "CPU".   In a multithreaded…
Learn several ways to interact with files and get file information from the bash shell. ls lists the contents of a directory: Using the -a flag displays hidden files: Using the -l flag formats the output in a long list: The file command gives us mor…
Learn how to find files with the shell using the find and locate commands. Use locate to find a needle in a haystack.: With locate, check if the file still exists.: Use find to get the actual location of the file.:

820 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question