[SOLVED] nothing but authentication failures
Posted: 2017/08/25 14:10:49
I am having a lot of authentication problems and I didn't make any changes to cause them. I am the only person that has EVER logged into the system - a RHEL 7 Server. This server is running as a VM in VMware ESXi (I honestly don't know which version).
The problem first presented itself when attempting to remote in with SSH. I used pam_tally2 --user=syswfrench --reset and tried again - no luck!
I checked MaxAuthTries in /etc/ssh/sshd_config and bumped it up from 1 to 2 and restarted sshd. Still no luck.
I checked pam_tally2 again, I had to re-run pam_tally2 --user=syswfrench --reset.
I tried sudo su - syswfrench; no luck!
I reset my password again - tried SSH and SUDO again; no luck!
I do have an RSA public key in my homedir on the remote host that I am SSH'ing into, but I am not using it anyway - I don't have that key on my Windows Lab machine (I know right!).
I even cleared the password hash out of the /etc/shadow file; and then attempted an su - syswfrench - still no luck.
I do have a homedir reference, that directory does exist.
I am not using IPA/LDAP I am only using /etc/passwd|/etc/shadow files for authentication.
I am not using NFS in the slightest.
I just tested the following:
$root> su - sysadm
$sysadm> su - syswfrench
Authentication fails.
$root> su - syswfrench
SUCCESS!!!
Please help!!!
The problem first presented itself when attempting to remote in with SSH. I used pam_tally2 --user=syswfrench --reset and tried again - no luck!
I checked MaxAuthTries in /etc/ssh/sshd_config and bumped it up from 1 to 2 and restarted sshd. Still no luck.
I checked pam_tally2 again, I had to re-run pam_tally2 --user=syswfrench --reset.
I tried sudo su - syswfrench; no luck!
I reset my password again - tried SSH and SUDO again; no luck!
I do have an RSA public key in my homedir on the remote host that I am SSH'ing into, but I am not using it anyway - I don't have that key on my Windows Lab machine (I know right!).
I even cleared the password hash out of the /etc/shadow file; and then attempted an su - syswfrench - still no luck.
I do have a homedir reference, that directory does exist.
I am not using IPA/LDAP I am only using /etc/passwd|/etc/shadow files for authentication.
I am not using NFS in the slightest.
I just tested the following:
$root> su - sysadm
$sysadm> su - syswfrench
Authentication fails.
$root> su - syswfrench
SUCCESS!!!
Please help!!!