unix solaris 10 user error

we just acquire a new system with windows and unix servers.  Accounts are setup through windows AD domain. There is a user that can't  login   to the a unix machine. His account was deleted and recreated with different uid and gid and then changed back to the original uid and gid. When we login as root and do:getent passwd it shows the  user twice with different uid and gid. the first entry shows with: vas:10008:10003::/export/home/user/bin/false. the second entry:  vas:10020:101::/export/home/user/bin/sh. Could this be the problem. Is there a way to fix.
ShenAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
Joseph GanConnect With a Mentor System AdminCommented:
Looks like you have not complately removed the user from Windows AD, before added back in.
0
 
Joseph GanSystem AdminCommented:
Correct way is to remove both accounts in AD, and re-create it with a correct uid and gid.
The simple way is if you could access root account on unix server, edit /etc/passwd file, and delete the wrong entry.
0
 
ShenAuthor Commented:
i removed the user from Windows AD. However the user still remains with two entries in the passwd file. i don't really want to edit the passwd file to remove entries especially under the root account. The top entry has  vas:10008:10003::/export/home/user/bin/false. Is there anything else i can do
0
Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

 
ShenAuthor Commented:
when i do: getent passwd i see thes two entries but if i do;  cat passwd and cat shadow,  i don't see the entries
0
 
ShenAuthor Commented:
trying to fix this i added back the user with uid 10008 and gid10003 in AD . When I try to login in unix i get: your user id number conflicts with another user. getent passwd still shows the two entries. please help
0
 
ShenAuthor Commented:
correction now i see one entry: vas:10008:10003::/export/home/user/bin/false from getent passwd. However, i can't login with this account: i get: your user id number conflicts...
0
 
ShenAuthor Commented:
it is removed. i also gpupdate  /force.  when i removed it and try to login i get unknown user. if i add it to AD  i get: your user id number conflicts with another user.
0
 
Joseph GanSystem AdminCommented:
What about "getent group uid" ?
0
 
ShenAuthor Commented:
When i left yesterday the entry was still in getent passwd. I just checked now getent passwd and the entry is gone. I don't know how this happened. Maybe a unix, ldap service that ran or from a windows service.
0
 
ShenAuthor Commented:
thank you very much for your help. Please if you have any explanation as to how the entry is gone plese let know. The user was removed from AD long before it went away from getent passwd. Maybe there is a service that runs to synchronize accounts from windows to unix, i don't know.

Thanks,
0
 
Joseph GanSystem AdminCommented:
You are right, it takes time to push out the change. Thanks.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.