Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >

KB-0235: Unable to log in as Active Directory user when /var is full

Authentication Service ,  

12 April,16 at 11:47 AM


No or little space in /var directory prevents Active Directory users from logging into a Centrify-enabled machine.


Lack of space or a full disk or directory may be caused by files in those directories getting too large, including the cache files used by Centrify DirectControl.


If this situation arises, Centrify recommends logging in as root and doing the following command: adflush ...This will flush the Centrify cache and make room in /var, and AD users should be able to log in. Centrify then recommends freeing or making additional space in the /var directory.

Note: If you are using a root account that is mapped to Active Directory for the zone that this machine is in, use "root@localhost" and your local root password to access the machine if you are unable to log in as any AD user.

If you are not using a root account that is mapped to Active Directory (i.e. root_default), please edit /etc/centrifydc/centrifydc.conf and comment out the line: pam.mapuser.root: root_$ZONE ...Which will continue to allow the local root account to have local access to the machine in this situation.