Tips for finding Knowledge Articles

  • - Enter just a few key words related to your question or problem
  • - Add Key words to refine your search as necessary
  • - Do not use punctuation
  • - Search is not case sensitive
  • - Avoid non-descriptive filler words like "how", "the", "what", etc.
  • - If you do not find what you are looking for the first time,reduce the number of key words you enter and try searching again.
  • - Minimum supported Internet Explorer version is IE9
Home  >
article

KB-1017: No user can login except root

Authentication Service ,  

5 June,20 at 06:29 PM

Question:

Centrify agent is connected as seen in adinfo output. However none of the users (except root) can login. The command adflush was run multiple times and the agent was restarted too. 

'adquery user' shows the following:


unixname:nobody
uid:99
gid:99
home:/
shell:/sbin/nologin
zoneEnabled:true


Is there any reason why the attributes are missing?

Answer:

This can happen if /etc/centrifydc/passwd.ovr file did not have the below line in the end. When this file is edited to created the overrides (For example: a customer can specify his own shell which can be different from what is defined in DirectManage), the last line should be left untouched as it means all other Centrify users will use the attributes which are defined in DirectManage.

If this line is not present, this can prevent anyone (except root) from logging into the Centrify server.

excerpt from /etc/centrifydc/passwd.ovr file


+:::::::

For more details on how the passwd.ovr file format works, please refer to the Centrify Unix Config Guide, which can be found on the support portal under 'Documentation'.

Still have questions? Click here to log a technical support case, or collaborate with your peers in Centrify's Online Community.