HELP!
I have just attempted to install enhanced security and now I can't login at the
console
or remotely. Here is the system info and what I have tried.
DEC AXP 3000/800s
Tru64 4.0d patchkit 5
Console = VT525 on ttyp0
This is the 5th system I have enabled C2 on in the last two weeks and I have not
had
this problem before. When I started, the C2-Security subset was installed but
not the
C2-Security GUI subset. Here are the basic steps I followed:
1. Install C2 GUI subset from 4.0d CD
2. run secsetup
3. change root password when prompted
4. shutdown and reboot system
At this point the system came up but I could not login at the console or
remotely as
root or a user.
I finally power cycled the system and did a boot -fl s to get back in
I then started looking at the C2 databases and found out that a previous admin
must
have attempted to install C2 several years ago. There were several old entries
in
the tables. I then attempted to clean up the databases with edauth. I then
rebooted
with the same results :-(
Since there were old entries I decided to start fresh:
1. used secsetup to return to BASE security
2. uninstalled both C2 subsets
3. uninstalled patches 742 and 771 (SSRT0588U)
4. deleted the files under /etc/auth and /tcb
5. re-installed both C2 subsets
6. re-installed patches 742 and 771
7. re-booted
8. once again enabled enhanced security with secsetup
9. re-booted
10. logins once again disabled
At the console it accepts the root password then after a few seconds goes
back to the login prompt. If I try to login with my user account remotely
it takes my username and password and quits.
login: west
Password:
Last successful login for west: NEVER
Last unsuccessful login for west: NEVER
Connection closed by foreign host.
What am I missing? This is the only system we have without a graphical
console but that doesn't seem to be the problem. Could I still have something
left over from the previous admin's C2 attempts?
Any help would be greatly appreciated and I will summarize.
Thanks,
_/_/_/ _/_/ _/ _/ Dan West - Senior Systems Analyst
_/ _/ _/ _/ _/_/ _/ OAO Corporation
_/ _/ _/ _/ _/ _/ _/ Kerr Environmental Research Center
_/ _/ _/_/ _/ _/ _/ _/ Voice (580) 436-8717
_/ _/ _/ _/ _/ _/_/ e-mail west.daniel_at_epa.gov
_/_/_/_/ _/ _/ _/ _/ http//www.epa.gov/ada
--------------------------------------------------------------------------
The 3rd Millennium and the 21st Century don't begin until January 1, 2001
** Disclaimer Text reflects my opinions, not OAO's nor the EPA's. **
Received on Fri Apr 07 2000 - 17:17:12 NZST