Clearing "AUTH_MAXTRIES" flag (6755 Views)
Reply
Regular Advisor
Matt Hearn
Posts: 230
Registered: ‎03-12-2002
Message 1 of 3 (6,755 Views)

Clearing "AUTH_MAXTRIES" flag

Hey all! We have some new i2 blades, running 11.31, and have a user that's locked out because he typed the wrong password too many times. That's expected behavior and a good thing, but the problem is, now that we've identified the problem and reset his password, he still can't log in; just gets this:
"Access is denied by the AUTH_MAXTRIES attribute in security(4)."

If the system were trusted, I could probably use modprpw -k to unlock him, but I have no idea how to do it in HP's new security setup. Resetting the password does nothing.

I could probably remove the AUTH_MAXTRIES setting in /etc/default/passwd or some other security file, but I don't want to have to do that everytime somebody mistypes their password three times. How can I clear his account so he can log in? Thanks!
Regular Advisor
Matt Hearn
Posts: 230
Registered: ‎03-12-2002
Message 2 of 3 (6,754 Views)

Re: Clearing "AUTH_MAXTRIES" flag

Nevermind, found my own answer! Need to do this:

userdbset -d -u username auth_failures
Esteemed Contributor
Ismail Azad
Posts: 487
Registered: ‎11-09-2010
Message 3 of 3 (6,754 Views)

Re: Clearing "AUTH_MAXTRIES" flag

Hi,

The command is right but I really think if you want to disable the AUTH_MAXTRIES attribute then you should use AUTH_MAXTIES as the argument for userdbset. And it's nice to know there are people making use of the SMSE database effectively . :)

Regards
Ismail Azad
Read, read and read... Then read again until you read "between the lines".....
The opinions expressed above are the personal opinions of the authors, not of HP. By using this site, you accept the Terms of Use and Rules of Participation.