System Adm » ssh http://www.system.adm.br Some IT Tips (Linux, Unix, HP-UX, AIX, Solaris, etc). Wed, 30 Nov 2011 17:59:40 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 AIX and user access denied http://www.system.adm.br/2010/05/aix-and-user-access-denied/ http://www.system.adm.br/2010/05/aix-and-user-access-denied/#comments Wed, 19 May 2010 20:11:00 +0000 Lincoln Zuljewic Silva http://www.system.adm.br/?p=297 AIX has a security feature named unsuccessful_login_count (/etc/security/lastlog) . It is an user account feature that count the number of unsuccessful login attempts and it works conjunction with the user's loginretries (/etc/security/user) attribute.

So, if you configure the loginretries=5, the user will not be able to log in after 5 retries. To enable the login again, you should reset the unsuccessful_login_count parameter by editing the file /etc/security/lastlog or with the following command:

# chsec -f /etc/security/lastlog -a unsuccessful_login_count=0 -s foobar

You can identify this problem by the following message in syslog:

May 19 15:42:41 aixbox auth|security:info sshd[7884888]: Login restricted for foobar: 3004-303 There have been too
many unsuccessful login attempts; please see \tthe system administrator.

]]> http://www.system.adm.br/2010/05/aix-and-user-access-denied/feed/ 0