VMware Cloud Community
santunez2275
Enthusiast
Enthusiast

root user locked in VRA 7.4 Cluster

Hello Guys

I have cluster of VRA 7.4 where the master node ever lock the root user.

When run pam_tally2 --user roor show me

Login           Failures Latest failure     From

root                13    08/21/18 17:04:15  <IP Secondary Node>

In occasion show me

Login           Failures Latest failure     From

root                14   08/21/18 17:04:15  127.0.0.1

I restart all VRA Appliance and start the master node and secondary node but the problem persist

Is possible your help for resolved this issue

Regards

SAN

Reply
0 Kudos
5 Replies
ldelorenzi
Contributor
Contributor

Have you tried running pam_tally2 --user root --reset?
Automate Everything!
Reply
0 Kudos
santunez2275
Enthusiast
Enthusiast

When run pam_tally2 --user root --reset the account is unlock but persist the lock of root password.

Regards

Sebastian

Reply
0 Kudos
GayathriS
Expert
Expert

Root account should get unlocked within 20- 30 minutes.

   If you are ok to reset the root VRA password then you could do that and it should work :

VMware Knowledge Base

Please consider marking this answer as "correct" or "helpful" if you think your questions have been answered.

regards

Gayathri

Reply
0 Kudos
santunez2275
Enthusiast
Enthusiast

Hello

I reset the lock with pam_tally2 but show lock with localhost  or secondary VRA

pastedImage_0.png

Thanks for your help

Regards

Reply
0 Kudos
rszymczak
Hot Shot
Hot Shot

Login into your identity manager appliance as sshuser and execute

sudo /sbin/pam_tally --user root --reset=0
sudo /sbin/pam_tally2 --user root --reset=0

When asked for a password, enter the password of the sshuser. This also works as of vRA 8.8. With newer PAM modules the pam_tally commands are replaced with the newr pam_faillock command.

Reply
0 Kudos