Using UnixLoginModule to login as root in Linux

Similar Messages

• Login as root in Linux from Netbeans

  Hi to all,
  I am to login as root by pressing a button in a JFrame ;
  Does anyone have any idea??
  Thanks

  I want to execute an application from java ,but this
  application will start only if you are root , so
  first I want to log as root and second to start that
  applicationWhat is this application?
  There is probably some very good reason for you to have to be root to execute it...

• Logging in as root in Linux using UnixLoginModule

  I am running an app on a Linux box where I am already logged in. I want to spawn a process that needs to run as root. I have tried to use UnixLoginModule to login as root :
          Subject subject = new Subject();
          subject.getPrincipals().add(new UnixPrincipal("root"));
          LoginContext loginContext = new LoginContext("Login", subject, new MyHandler());
          loginContext.login();but my callback handler that would supply the password is never called and I don't appear to be logged in as root. It looks like UnixLoginModule simply returns data about the current user which is a fat lot of good. Does anyone know what I can do to make this thing do what it is supposed to do and allow me to perform a login? If JAAS is inadequate is there another way to acheive this?
  Regards,
  Matthew

  Hi,
  I am trying to setup the UnixLoginModule. I set almost everything but when I am trying to login, I got a NullPointerException (here is the stack trace)
  WARNING: Login exception authenticating username user1
  javax.security.auth.login.LoginException: java.lang.NullPointerException
  at com.sun.security.auth.module.UnixLoginModule.login(UnixLoginModule.java:118)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:324)
  at javax.security.auth.login.LoginContext.invoke(LoginContext.java:675)
  at javax.security.auth.login.LoginContext.access$000(LoginContext.java:129)
  at javax.security.auth.login.LoginContext$4.run(LoginContext.java:610)
  at java.security.AccessController.doPrivileged(Native Method)
  at javax.security.auth.login.LoginContext.invokeModule(LoginContext.java:607)
  at javax.security.auth.login.LoginContext.login(LoginContext.java:534)
  at org.apache.catalina.realm.JAASRealm.authenticate(JAASRealm.java:281)
  at org.apache.catalina.authenticator.FormAuthenticator.authenticate(FormAuthenticator.java:229)
  at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:446)
  at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
  at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:535)
  at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:137)
  at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
  at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:117)
  at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:102)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
  at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
  at org.apache.catalina.core.StandardValveContext.invokeNext(StandardValveContext.java:104)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:520)
  at org.apache.catalina.core.ContainerBase.invoke(ContainerBase.java:929)
  at org.apache.coyote.tomcat5.CoyoteAdapter.service(CoyoteAdapter.java:160)
  at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:799)
  at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.processConnection(Http11Protocol.java:705)
  at org.apache.tomcat.util.net.TcpWorkerThread.runIt(PoolTcpEndpoint.java:577)
  at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:683)
  at java.lang.Thread.run(Thread.java:534)
  The line 118 seems to indicate by the UnixSystem returns a NULL array of long that corresponds to "unixGroups".
  Good documentation is hard to get... can you help me fixing this problem?
  Thanks

• [SOLVED] Unable to login to root unless it's through another account.

  I'm fairly inexperienced with Linux and am having a frustrating problem.
  I've forgotten my root password (oh boy) and am experiencing some weird problems attempting to reset it.
  I have other accounts, which I can log in to, and they have sudo privileges. So I am not very restricted as to what I can actually do.
  So I tried to use "passwd root" to change my root account password.
  This allowed me to log in to root (at least I believe it is root) using "su" and the newly created password.
  However, when I reboot and try to log in to root from the normal log in screen, it claims I'm using the wrong password.
  I also tried logging in to root using "su" and then using "passwd" to change the root password. I got the same results as before.
  I even tried removing the root password from the "etc/shadow" file, though I'm really not familiar with how that file works in archlinux.
  I've searched around online, and stumbled across some similar topics in this forum, but all of them have worked around the problem by using a boot disc in some way.
  I would really like to know what exactly is going on with my system here and why this password confusion is happening. If possible, I'd really really like to reset my root password remotely.
  If this has been addressed before and I missed it, please link me to the old topic.
  Thanks for reading guys. Any help is appreciated.
  Last edited by bluekirby (2011-04-05 04:55:20)

  bluekirby wrote:If there were any location where I could deny people from logging in as root, where would that file be?
  I'm really hoping it's just something I edited months ago and forgot about.
  Take a look to this topic:
  https://bbs.archlinux.org/viewtopic.php?id=67753
  And try this to reset the password:
  http://www.howtoforge.com/how-to-reset- … knoppix-p2
  After that, only the users who knows(and are listed on /etc/sudoers) the root password will be able to do root jobs, like installing/removing packages or modify the filesystem.
  Note that if you use sudo you can use visudo to edit /etc/sudoers command to prevent or allow users to do root jobs, example:
  root ALL=(ALL) ALL
  # %wheel ALL=(ALL) ALL
  If you uncomment %wheel line all users in wheel group can do root jobs if they know the root password.
  But you can leave commented %wheel line and add users manually, example(for "edward" and "christine" users):
  root ALL=(ALL) ALL
  # %wheel ALL=(ALL) ALL
  edward ALL=(ALL) ALL
  christine ALL=(ALL) ALL
  By doing this,these two users(through sudo) and root will be allowed to do root jobs and nobody else
  NOTE: Editing /etc/sudoers through visudo is hardly recommended, please dont edit the file manually with nano,vi,vim,etc. USE "visudo"
  P.S. Reseting the password through a live distro is the most recommended way to reset the root password.
  Last edited by AurosGamma (2011-04-05 04:31:34)

• Oracle ADF 11g – Authentication using Custom ADF Login Form Problem

  Hi Guys,
  I am trying to Authenticate my adf application using custom Login Form.
  following this..
  http://www.fireboxtraining.com/blog/2012/02/09/oracle-adf-11g-authentication-using-custom-adf-login-form/#respond
  But my Login Page is not Loading.I think its sending request in chain.my jdev version is 11.1.1.5.Any Idea.
  Thanks,
  Raul

  Hi Frank,
  I deleted bounded code and In another Unit Test I created a simple login.jspx page and applied form based authentication but still facing same problem means something wrong in starting.
  My login.jspx page is
  <?xml version='1.0' encoding='UTF-8'?>
  <jsp:root xmlns:jsp="http://java.sun.com/JSP/Page" version="2.1"
            xmlns:f="http://java.sun.com/jsf/core"
            xmlns:h="http://java.sun.com/jsf/html"
            xmlns:af="http://xmlns.oracle.com/adf/faces/rich">
    <jsp:directive.page contentType="text/html;charset=UTF-8"/>
    <f:view>
      <af:document id="d1" >
        <af:form id="f1" >
          <af:panelFormLayout id="pfl1">       
            <af:inputText label="USERNAME" id="it1"
                          />       
            <af:inputText label="PASSWORD" id="it2"
                            />
            <af:commandButton text="LOG IN" id="cb1" />
            <f:facet name="footer">       
            </f:facet>                 
          </af:panelFormLayout>
        </af:form>
      </af:document>
    </f:view>
  </jsp:root>
  Don't know wht real problem is

• Using udev devices for ASM disk on Linux

  Hello all,
  I need details related to using udev devices as ASM disk on Linux.
  What I want to know is, once i get the list of ASM Disks that are used to create the DiskGroups, based on the path of the Disk (whether /dev/sdj or /dev/dm-3 or /dev/asm_udev_device, /dev/vx/<vxvm-volume>, /dev/<lvm-volume>) how do i get to know if the device type is a udev device?
  I want to know an automated process, so that i can script it out to separate out each device easily.
  Please let me know if anyone has expertise on using udev devices with Oracle ASM.
  I have referred the link but no much details available http://www.oracle.com/technology/products/database/asm/pdf/device-mapper-udev-crs-asm%20rh4.pdf
  Further, the behavior of udevinfo command is very different across version of Linux. From Suse 10 onwards, udevadm has to be used instead.
  Its confusing to me.
  Please help.
  ~Sumeet.

  My installation, ASM On SI
  S.O HP-UIx
  Disk internal, not SAN
  Internal disk configuration for Oracle.
  PV Name /dev/dsk/c11t0d0
  PV Name /dev/dsk/c11t1d0
  PV Name /dev/dsk/c11t2d0
  PV Name /dev/dsk/c11t3d0
  PV Name /dev/dsk/c11t4d0
  PV Name /dev/dsk/c11t6d0
  Vg:
  /dev/vgora
  Lv
  /dev/vgora/lvu01 <-- Oracle Bin mounted /u00
  /dev/vgora/lvu02 <-- External Archive /u02
  In /dev/vgora
  brw-r----- 1 root sys 64 0x010001 Mar 8 14:42 lvu01
  brw-r----- 1 root sys 64 0x010002 Mar 8 16:15 lvu02
  brwxrwxr-x 1 root sys 64 0x010003 Mar 19 14:19 lvasm01
  brwxrwxr-x 1 root sys 64 0x010004 Mar 19 14:20 lvasm02
  brwxrwxr-x 1 root sys 64 0x010005 Mar 19 14:20 lvasm03
  brwxrwxr-x 1 root sys 64 0x010006 Mar 19 14:20 lvasm04
  brwxrwxr-x 1 root sys 64 0x010007 Mar 19 14:20 lvasm05
  brwxrwxr-x 1 root sys 64 0x010008 Mar 19 14:20 lvasm06
  brwxrwxr-x 1 root sys 64 0x010009 Mar 19 14:20 lvasm07
  brwxrwxr-x 1 root sys 64 0x01000a Mar 19 14:20 lvasm08
  brwxrwxr-x 1 root sys 64 0x01000b Mar 19 14:20 lvasm09
  brwxrwxr-x 1 root sys 64 0x01000c Mar 19 14:21 lvasm10
  crw-r----- 1 root sys 64 0x010001 Mar 8 14:42 rlvu01
  crw-r----- 1 root sys 64 0x010002 Mar 8 16:15 rlvu02
  crw-r--r-- 1 root sys 64 0x010000 Mar 8 14:19 group
  FOR ASM
  crw-rw---- 1 oracle dba 64 0x010003 Mar 19 14:19 rlvasm01
  crw-rw---- 1 oracle dba 64 0x010004 Mar 19 14:20 rlvasm02
  crw-rw---- 1 oracle dba 64 0x010005 Mar 19 14:20 rlvasm03
  crw-rw---- 1 oracle dba 64 0x010006 Mar 19 14:20 rlvasm04
  crw-rw---- 1 oracle dba 64 0x010007 Mar 19 14:20 rlvasm05
  crw-rw---- 1 oracle dba 64 0x010008 Mar 19 14:20 rlvasm06
  crw-rw---- 1 oracle dba 64 0x010009 Mar 19 14:20 rlvasm07
  crw-rw---- 1 oracle dba 64 0x01000a Mar 19 14:20 rlvasm08
  crw-rw---- 1 oracle dba 64 0x01000b Mar 19 14:20 rlvasm09
  crw-rw---- 1 oracle dba 64 0x01000c Mar 19 14:21 rlvasm10
  And the problem is:
  When i run dbca for create diskgroup, that not recognize the disk.
  I will set asm_diskstring with the correctly path.
  I try to create a diskgroup from command line, but i see this error.
  SQL> create diskgroup DG_DATA_01 external redundancy DISK '/dev/vgora/rlvasm01' ;
  create diskgroup DG_DATA_01 external redundancy DISK '/dev/vgora/rlvasm01'
  ERROR at line 1:
  ORA-15018: diskgroup cannot be created
  ORA-15031: disk specification '/dev/vgora/rlvasm01' matches no disks
  ORA-15025: could not open disk '/dev/vgora/rlvasm01'
  ORA-15059: invalid device type for ASM disk
  Additional information: 255

• Disabling normal login and only using smart card login?

  I've managed to setup login using BELPIC (Belgian Identity Card (smart card). However I can still login using username/password. Is it possible to restrict the system only using smart card login? (maybe via tweaking the authorize file?)
  Thanks

  The problem isn't with the provider part of the code - it has to do with security privleges. Java code running from the command line has full access to the file-system. Servlets running inside a container do not.
  In order to access cryptographic keystores, the JVM must allow the servlet code to access local files (and through them, the device drivers to the crypto token). Servlet code running inside a web/application server container, by design, are restricted in their ability to access local files on the servlet container machine (other than configuration files and application code under the servlet context root).
  In order to continue with my project, I had to temporarily provide the servlet full access to the machine's file-system in the java.policy file for your JVM, along the lines of the following:
  grant {
  permission java.security.SecurityPermission "authProvider.SunPKCS11-NSS", "getSignerPrivateKey";
  I hope to go back and restrict this access so that only the specific security grants are available to the servlet to access the private key (the above is too lenient).
  You will need to do something similar to your JVM's java.policy to allow the servlet to access the private key. Substitute the "authProvider.SunPKCS11-NSS" with the driver for your own token.

• I plugged in my brand new nano to my husbands desktop to get it registered, but had a problem mid way through when I tried to used an apple login that already existed.  Now it's not registered and the computer won't recognize my device.  How do I fix this

  I plugged in my brand new nano to my husbands desktop to get it registered, but had a problem mid way through when I tried to used an apple login that already existed.  Now it's not registered and the computer won't recognize my device.  How do I fix this?

  iPod not recognized in 'My Computer' and in iTunes for Windows
  Call U.S. iPod and Mac technical support: 1-800-APL-CARE (1-800-275-2273) to register your iPod Nano.

• How do you use a custom login application?

  I have setup a custom Login Application as instructed from the admin guide, but cannot find any instructions on how you then go about using it. Some other posts on here mention customising/linking a page to it based on the user Login.jsp, but they arn't clear on the steps to do this.

  The solution I was using was a single sign on system called CAS, which handled the authentication. The class I used is shown here:
  http://www.ja-sig.org/wiki/display/CAS/CASifying+Sun+Identity+Manager
  The java class is called: CASResourceAdapter.java
  Most of this code is not used. The bit you would be interested in is in the method named:
  public WavesetResult authenticate(HashMap loginInfo) throws WavesetExceptionIf you delete all the code in here and replace it with the code below as most of this is a customised search that the author wrote:
       final String method = "authenticate";
       if (_trace.level1(this,method))
              _trace.entry(WSTrace.LEVEL1, this, method);
          WavesetResult result = new WavesetResult();
          String userId = (String)loginInfo.get(USER);
          if(_trace.level2(this,method))
            _trace.info(_trace.LEVEL2, this, method, USER + " = " + userId);
            _trace.info(_trace.LEVEL2, this, method, "map: " +  loginInfo);
          if (_trace.level2(this,method))
              _trace.info(_trace.LEVEL2, this, method, "Obtained user '" + userId + "' from info: " + String.valueOf(loginInfo));
          result.addResult(Constants.AUTHENTICATED_IDENTITY, userId);
          return result;You could also remove the trace code. The code you would be interested in particular would be:
  WavesetResult result = new WavesetResult();
  String userId = (String)loginInfo.get(USER);
  if(_trace.level2(this,method))
  result.addResult(Constants.AUTHENTICATED_IDENTITY, userId);
  return result;The logininfo is a method used to retrieve whatever userid was used to authenticate. This is what was needed to retreive the userid from CAS. You will need to replace this with custom code to retreive the userid from your webservice.
  Once you are happy with the code, place the compiled class with the correct package levels in idm/web-inf/classes. You may need to create the folder called classes.
  Next login to your idm and goto resources and then configure types. Add a custom resource to point to your new class In my case it was edu.unmerced.idm.adapter.CASResourceAdaptor. Save this and then add this as a resource in your resources screen and except all defaults and give it a custom name of your choice.
  You then need to add this resource to each of your users.
  Next you need to goto configure and then login. In here you need to create a new login module group and point it to your CAS resource. Then change the default login for the users login application to use this new login group. See idm specific documentation on how to do this
  Reboot your idm application server.
  You would now use your alternative webservice system to authenticate and then afterwards get it to forward to your idm and if the code picks up the user from your webservice correctly you should be logged into idm as that user.

• How can i use my custom login page in a custom partner application ?

  Dear All,
  I'm trying to customize a login page displayed other than the default sso login page
  by submiting my form to the regular pl/sql procedure : "PORTAL.wwptl_login.login_url"
  but i tried to type the requested partner application url in the browser i got the sso
  login page other than my custom login page. So, How can i use my custom login page in a custom partner application ?
  Regards,
  Mohammed Amin
  [email protected]

  I cannot begin to express my level of frustration. I have been trying to use the composition widget light box display for some time now. I drag the widget to my document. The default widget has three small trigger boxes and a large area made up of a forward and backward button, a background, a text box and a frame for your image.
  My steps have been …
  I click on the little trigger box.
  I click on the frame that holds the main image.
  I go to the fill menu and browse my computer for my image and then click OK.
  IT shows up on my screen. Yay
  I attempt to continue using the next two trigger boxes provided in the widget.
  After that, I add more by clicking on the little plus sign.
  This is where all heck breaks loose.
  Every single time I attempt to add thumbnails, something messes up. When I go to preview, either not all of my main images show up, or it starts with the wrong one, or some are missing. I have looked and looked for help on this and the only thing I can find is how easy it is to create a great portfolio lightbox display.  But as we know, that only works when your thumbnails are the same image as the images in your lightbox. If you want something different, you have to use the composition wizard. I am finding it extremely difficult and confusing to customize.
  Is there an exact sequence you need to use to add images to the slideshow? I am my wits end.

• Login as Root password problem (the changed password isn't working!)

  I have enabled root user. I've changed my password for root user a couple of time and I am still not cable to login as root!! (username: root).
  Any thoughts and help? thanks a lot! Alon.

  Hello Stephen,
  Change of password is not done via configtool. Configtool secure store just stores the current password which is taken by SDM during the deployment.
  To change the password of the administrator user, you will need to enable SAP*. Please follow note Note 669848.
  1. open the configtool: C:\usr\sap\<InstenceID>\JC<xx>\j2ee\configtool --> configtool.bat
  ex: C:\usr\sap\J9E\JC09\j2ee\configtool ---> configtool
  2. Activate the "super admin" and enter password(this is your choice) in configtool properties:
  In Config tool: cluster-data>Global Server configuration>services--> com.sap.security.core.ume.service
  find below ume properties and change values as i mentioned
  ume.superadmin.activated=TRUE
  ume.superadmin.password= < enter password>
  3. Save the changes in configtool. click on Save button.
  4. Stop the j2ee engine.
  5. Start the j2ee engine.
  6. Now you login to UME with username "SAP*" and password "what you entered in configtool"
  7. After logging into UME Search for user "administrator" then unlock this user; or if you want to change password you can change it.
  8. Goto config tool follow step 1:
  9. Follow step2: and change ume property values as below:
  ume.superadmin.activated=FALSE
  ume.superadmin.password= (note: seta as default or blank)
  10. Save the change setting in configtool.
  11. Restart the j2ee engine ( Stop and Start).
  12. Now login to user as "Administrator"; you will succussfully loging into ume;
  Hope this helps.
  Regards,
  Snehal

• How to login as root in mountain lion?

  i've already enabled the root function in directory utility.
  i CANT find how to login as root user. in login window there's just the one for my admin account.
  please help, i want to change the name of my home folder..
  [p/s: i've done this previously in snow leopard]

  Well, i have the same problem, and the solution you suggest kinda works...
  If i log out and try to login again then it works as expected.
  Meaning that if the setting is set at "Name and password" you get 2 empty fields
  and if it's set to "List of users" (with root user enabled) i get 2 circles (one with my user name and a second one marked as other, so i can log in as root).
  But this only happens when i log out and try to log in again.
  If i restart the Mac or shut it down and open it again, then this setting is ignored and all i am getting is one circle with my main account to log on!!!
  Could this be a ML bug?
  I even upgraded to 10.8.1 today, but that didn't fix things!
  Any ideas?
  Thanks.

• I am working with two computers in my profession (Mac/PC). I want to download testversions, lets say Premiere Elements 13, for Mac and PC using my adobe login. Is this possible?

  I am working with two computers in my profession (Mac/PC). I want to download testversions, lets say Premiere Elements 13, for Mac and PC using my adobe login. Is this possible?

  Sure. Elements is cross-platform, anyway.
  Mylenium

• Vnc without dtlogin, I.e. using gnome display login?

  Greetings all,
  Anyone out there use the xvnc server that comes bundled with u5 or u6 successfully? I've been able to get it to run with the default 'cde-login', but due to a number of security issues, we are strongly recommended to not use it (Federal Desktop Computing Configuration (FDCC)). So I've been trying (unsuccessfully) to get it to work with gdm2-login (the Gnome login manager). I get a sucessful connection, but it's blank with no log in options of any kind.
  Appreciate any thoughts or insights.
  Dave
  P.S. Solaris 10 (x86 and Sparc) machines, version 11/08 (aka u6)
  Dave

  Dave,
  I've been having the same issue. I installed SUNWxvnc on a SPARC box running Sol 10 8/07 updated to the 138888-01 kernel. It worked fine while using the cde-login, but then we have a security package that we install that changes the default login to gdm2-login. Since then the vnc processes have failed to start. I've done some searching and the only requirement I have found is that XDMCP needs to be enabled in the gdm.conf file. I haven't made much headway with the issue because of other fires that I'm fighting, but will post if I figure it out. I would appreciate it if you have any other info on this...
  Thanks

• Error msg = pls. install/uninstall the product using setup.exe in the root folder

  unable to install photoshop elements v10 on a windows 7, ultimate 64bit computer, get:
  error msg = pls. install/uninstall the product using setup.exe in the root folder

  yes, I am installing as the administrator.  I have tried to install from
  two different folders;
  1. c://adobe photoshop elements 10.msi
  and
  2. c://program files/adobe/adobe photoshop elements 10.msi
  get the same error message from both locations.
  the error message is not specific as to "root folder"
  someone please help with this.  I would like to be able to install this app.