AIX - How to unlock and reset user’s account

AIX - How to unlock and reset user's account

 
Sometimes a user cannot remote login to an AIX machine might not due to just password expired issue. His/her account might have some other settings that prevent them from logging in. Below is a quick check procedure and how to resolve the issue if it is due to account setting issue.

To check user's account.
=======================================================
root@server # lsuser james
james id=27649 pgrp=staff groups=staff home=/local/users/james shell=/bin/ksh gecos=James SH login=true su=true rlogin=true daemon=true admin=false sugroups=ALL admgroups= tpath=nosak ttys=ALL expires=0 auth1=SYSTEM auth2=NONE umask=27 registry=files SYSTEM=compat logintimes= loginretries=6 pwdwarntime=10 account_locked=false minage=0 maxage=5 maxexpired=3 minalpha=5 minother=2 mindiff=3 maxrepeats=2 minlen=8 histexpire=26 histsize=14 pwdchecks= dictionlist= fsize=-1 cpu=-1 data=-1 stack=-1 core=8192 rss=-1 nofiles=5000 fsize_hard=-1 cpu_hard=-1 data_hard=-1 stack_hard=-1 rss_hard=-1 time_last_login=1393339184 time_last_unsuccessful_login=1340282915 tty_last_login=/dev/pts/14 tty_last_unsuccessful_login=ssh host_last_login=jumpserver.domain.com host_last_unsuccessful_login=tsitsshl304.europe.shell.com unsuccessful_login_count=0 roles=
=======================================================

Make sure the parameters below are having the correct value.
=======================================================
su=true
rlogin=true
daemon=true
expires=0
account_locked=false
unsuccessful_login_count=0 

=======================================================

If the value is incorrect as above, change the value using below command.
=======================================================
root@server # chuser <parameter>=<value> <userid>
root@server # chuser rlogin=true james

=======================================================

Then try to reset the password of the user.
=======================================================
root@server # passwd james
=======================================================

Finally try to login with the new password. If it still fails, check on the parameters again.
#Hint: There is a possibility that OS config like PAM is prohibiting the login.
4 (1)
Article Rating (1 Votes)
Rate this article
Attachments
There are no attachments for this article.
Comments
There are no comments for this article. Be the first to post a comment.
Full Name
Email Address
Security Code Security Code
Related Articles RSS Feed
AIX QHA
Viewed 10632 times since Mon, Jun 3, 2019
Got Duplicate PVIDs in Your User VG? Try Recreatevg!
Viewed 2742 times since Fri, Feb 1, 2019
Monitoring Events with AIX Audit
Viewed 3482 times since Wed, May 30, 2018
A Change to the SMT Mode Default in POWER9
Viewed 4509 times since Fri, Jan 18, 2019
View mksysb content & restore individual files
Viewed 1494 times since Tue, Jul 17, 2018
Create bootable DVD iso image from a mksysb backup
Viewed 3776 times since Tue, Jul 17, 2018
AIX FC Performance improvements for IBM AIX FC and FCoE device driver stacks
Viewed 4971 times since Fri, Jan 31, 2020
Part 3, Tuning swap space settings AIX7
Viewed 8614 times since Wed, Jun 19, 2019
IVM and VLAN Tagging
Viewed 9964 times since Mon, May 28, 2018
AIX Resolving "missing" or "removed" disks in AIX LVM
Viewed 3710 times since Tue, Aug 6, 2019