Fedora Linux Support Community & Resources Center
  #1  
Old 10th March 2017, 02:57 AM
david.paige Offline
Registered User
 
Join Date: Oct 2009
Posts: 19
linuxfedorafirefox
pam_tally2 doesn't unlock account

I have this weird problem I have experienced twice on rhel6, and once on rhel7. Let's say that I have a user account I use to log into the system. We'll call it sys1. What happens, is that the account will lock, and I have to use another account to unlock it. We'll call that account sys2.

Here is the strange part. I can't ever seem to unlock the account. I can reset it with pam_tally2, I can change the password from root, but I can't log into the account any more. Ever. The password is no longer recognized.

For example:
# pam_tally2 --reset
sys1 5 failed logon attempts
# pam_tally2
# passwd sys1
Password:
Password:
All authenticators changed.
# su - sys2

sys2> su - sys1
Password:
<fails because I use sys1 password>

sys2> sudo su - sys1
Password:
<succeeeds, because I use the sys2 password>

What I end up doing is creating a new account, say sys3, so that I can have two accounts in case I need to get an account lockout. I have tried deleting the account, and it didn't make any difference. It's almost like it is tracking the lockout somewhere else.

I've searched, but I'm not really sure how to narrow down this problem. Any ideas?
Reply With Quote
  #2  
Old 10th March 2017, 06:58 AM
DBelton Offline
Administrator
 
Join Date: Aug 2009
Posts: 8,463
linuxfedorafirefox
Re: pam_tally2 doesn't unlock account

Did yo specify the user to reset on the pam_tally2 line?

Code:
pam_tally2 --user sys1 --reset
Edit:

If pam_tally2 doesn't work, try using faillock

Code:
faillock --user sys1 --reset
Reply With Quote
Reply

Tags
linux, pam

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Anaconda doesn't add a non-root user account? bob p F18 Development 9 14th December 2012 01:23 AM
Locking user account with pam_tally2.so doesn't work cleegt Using Fedora 0 9th June 2010 06:43 AM
Fed 12 pam_tally / pam_tally2 kbpower Installation, Upgrades and Live Media 0 14th December 2009 11:29 PM
Install into root account instead of normal user account myisty Using Fedora 1 3rd June 2007 08:27 PM
Thunderbird doesn't get messages from Movemail account automatically? sklm Using Fedora 0 16th February 2006 10:12 PM


Current GMT-time: 11:12 (Saturday, 23-09-2017)

TopSubscribe to XML RSS for all Threads in all ForumsFedoraForumDotOrg Archive
logo

All trademarks, and forum posts in this site are property of their respective owner(s).
FedoraForum.org is privately owned and is not directly sponsored by the Fedora Project or Red Hat, Inc.

Privacy Policy | Term of Use | Posting Guidelines | Archive | Contact Us | Founding Members

Powered by vBulletin® Copyright ©2000 - 2012, vBulletin Solutions, Inc.

FedoraForum is Powered by RedHat