Link to home
Start Free TrialLog in
Avatar of Jason Yu
Jason YuFlag for United States of America

asked on

cannot su to another user on ec2 aim instance

I have an ec2 instance which is AIM.


root@monitor:/home/ec2-user$ cat /etc/*-release
NAME="Amazon Linux AMI"
VERSION="2014.09"
ID="amzn"
ID_LIKE="rhel fedora"
VERSION_ID="2014.09"
PRETTY_NAME="Amazon Linux AMI 2014.09"
ANSI_COLOR="0;33"
CPE_NAME="cpe:/o:amazon:linux:2014.09:ga"
HOME_URL="http://aws.amazon.com/amazon-linux-ami/"
Amazon Linux AMI release 2014.09
root@monitor:/home/ec2-user$



When I tried to su to another user "elasticsearch", it doesn't let me switch. Please take a look and give me some advise.

[ec2-user@monitor ~]$ su - elasticsearch
Password:
Last failed login: Tue Jun  7 00:26:31 UTC 2016 on pts/1
There was 1 failed login attempt since the last successful login.
This account is currently not available.
[ec2-user@monitor ~]$ sudo su - elasticsearch
Last login: Tue Jun  7 00:26:58 UTC 2016 on pts/1
This account is currently not available.
[ec2-user@monitor ~]$ sudo su
root@monitor:/home/ec2-user$ su - elastissearch
su: user - does not exist
root@monitor:/home/ec2-user$ su - elasticsearch
su: user - does not exist
root@monitor:/home/ec2-user$ cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
saslauth:x:499:76:"Saslauthd user":/var/empty/saslauth:/sbin/nologin
mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
tcpdump:x:72:72::/:/sbin/nologin
ec2-user:x:500:500:EC2 Default User:/home/ec2-user:/bin/bash
nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
nslcd:x:65:55:LDAP Client User:/:/sbin/nologin
postgres:x:26:26:PostgreSQL Server:/var/lib/pgsql:/bin/bash
nagios:x:498:498::/var/spool/nagios:/sbin/nologin
rpc:x:32:32:Rpcbind Daemon:/var/cache/rpcbind:/sbin/nologin
icinga:x:497:497:icinga:/var/spool/icinga:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
elasticsearch:x:496:495:elasticsearch user:/usr/share/elasticsearch:/sbin/nologin
logstash:x:495:494:logstash:/opt/logstash:/sbin/nologin
graphite:x:91:91::/opt/graphite:/sbin/nologin
openvpn:x:494:493:OpenVPN:/etc/openvpn:/sbin/nologin
smstools:x:493:492::/var/lib/smstools:/bin/bash
root@monitor:/home/ec2-user$
ASKER CERTIFIED SOLUTION
Avatar of woolmilkporc
woolmilkporc
Flag of Germany image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of Jason Yu

ASKER

got it. for start elasticsearch service, do I need start it as elasticseach user or the root user.

If I need start it as elasticsearch user, I have to enable the login for this user?

thanks.
elasticsearch is normally started by root from /etc/init.d  at system initilization.
The product offers the configuration parameters:
ES_USER (default: elasticsearch) and ES_GROUP (default: elasticsearch)
under whose credentials and names the background process will run.
So the user elasticsearch isn't required to be able to login.
Thanks, I will go ahead run it as root as before.