Sorry for the lateness of the summary.
Thanks to the following for responding:
Ann Cantelow <cantelow_at_athena.csdco.com>
John P Speno <speno_at_isc.upenn.edu>
Donn Aiken <daiken_at_regents.edu>
Michael Bucholtz <mbucholt_at_ceiss.org>
William H. Magill <magill_at_isc.upenn.edu>
John Losey <johlos_at_hbsi.com>
Suggestions ranged from checking filesystem permissions of the database
files and the passwd binaries; making sure that the users were logged in
as themselves, not su-ed; checking the method that was used to add the
user to the system - adduser vs dxaccounts. None of those suggestions had
any effect so I eventally called Compaq. It turns out that an outdated
verion of MIT kerberos was the culpret. I negelected to state in either
posting to the list that I was running kerberos as the authentication
method as I thought that it wouldn't have any effect on the problem (e.g.
passwd (for the unix password) vs kpasswd (for the kerberos password). An
upgrade to kerb 5 v1.0.6 from v1.0.5 did the trick.
(2nd) original post follows:
About a week or so ago, I posted the following question to the list.
I've only had one reply to date, so I thought I'd give it another shot.
Original question follows:
Managers,
A newbie C2 question for you. Under 4.0D + jumbo3 + SSRT0583Q,
SSRT0583U & SSRT0588U, normal users get the following error when they
issue the passwd command:
>passwd
Password not changed: not authorized to change another user's password.
Authentication error; see Account Administrator
After a fresh (not update) install of 4.0D, security mode was changed to
C2 and the users were created with the adduser program. Running authck
doesn't return anything usefull.
Since root can change his password via passwd, I assume that its a
permissions problem, but don't know enough about C2 to begin to look
where. Any help would be appreciated. As always, I'll summarize for
the list.
BTW, I saw two postings in the archive that referenced this error
message, neither with a summary. I sent email to one of the posters,
Jeffrey Hundstad <jeffrey.hundstad_at_mankato.msus.edu>, who responded that
he'd been sent a new copy of a library that solved the problem, but
didn't say which one. A request for more info from him hasn't been
replied to as of now.
--
Jim Williams
Systems Programer III
University of Alaska
Information Technology Services
http://sxjvw-2.sons.alaska.edu
Email Snail Mail
jim.williams_at_alaska.edu P. O. Box 755320
Phone: (907) 474-6290 910 Yukon Dr., Suite 105
Fax: (907) 474-7127 Fairbanks, AK 99775-5320
InterNIC: JW18920
See web page for PGP fingerprint & public key
#include <stddisclaimer.h>
Received on Fri Dec 03 1999 - 19:42:31 NZDT