• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 294
  • Last Modified:

unix solaris 10 user error

we just acquire a new system with windows and unix servers.  Accounts are setup through windows AD domain. There is a user that can't  login   to the a unix machine. His account was deleted and recreated with different uid and gid and then changed back to the original uid and gid. When we login as root and do:getent passwd it shows the  user twice with different uid and gid. the first entry shows with: vas:10008:10003::/export/home/user/bin/false. the second entry:  vas:10020:101::/export/home/user/bin/sh. Could this be the problem. Is there a way to fix.
0
Shen
Asked:
Shen
  • 7
  • 4
1 Solution
 
Joseph GanSystem AdminCommented:
Correct way is to remove both accounts in AD, and re-create it with a correct uid and gid.
The simple way is if you could access root account on unix server, edit /etc/passwd file, and delete the wrong entry.
0
 
ShenAuthor Commented:
i removed the user from Windows AD. However the user still remains with two entries in the passwd file. i don't really want to edit the passwd file to remove entries especially under the root account. The top entry has  vas:10008:10003::/export/home/user/bin/false. Is there anything else i can do
0
 
ShenAuthor Commented:
when i do: getent passwd i see thes two entries but if i do;  cat passwd and cat shadow,  i don't see the entries
0
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.

 
ShenAuthor Commented:
trying to fix this i added back the user with uid 10008 and gid10003 in AD . When I try to login in unix i get: your user id number conflicts with another user. getent passwd still shows the two entries. please help
0
 
ShenAuthor Commented:
correction now i see one entry: vas:10008:10003::/export/home/user/bin/false from getent passwd. However, i can't login with this account: i get: your user id number conflicts...
0
 
Joseph GanSystem AdminCommented:
Looks like you have not complately removed the user from Windows AD, before added back in.
0
 
ShenAuthor Commented:
it is removed. i also gpupdate  /force.  when i removed it and try to login i get unknown user. if i add it to AD  i get: your user id number conflicts with another user.
0
 
Joseph GanSystem AdminCommented:
What about "getent group uid" ?
0
 
ShenAuthor Commented:
When i left yesterday the entry was still in getent passwd. I just checked now getent passwd and the entry is gone. I don't know how this happened. Maybe a unix, ldap service that ran or from a windows service.
0
 
ShenAuthor Commented:
thank you very much for your help. Please if you have any explanation as to how the entry is gone plese let know. The user was removed from AD long before it went away from getent passwd. Maybe there is a service that runs to synchronize accounts from windows to unix, i don't know.

Thanks,
0
 
Joseph GanSystem AdminCommented:
You are right, it takes time to push out the change. Thanks.
0

Featured Post

Concerto's Cloud Advisory Services

Want to avoid the missteps to gaining all the benefits of the cloud? Learn more about the different assessment options from our Cloud Advisory team.

  • 7
  • 4
Tackle projects and never again get stuck behind a technical roadblock.
Join Now