Misconfigured sudo rules results in false positive password resets.
sample log results from password resets:
account@system's password:
debug1: Authentication succeeded (password).
Authenticated to system([system]:22).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: Sending command: sudo passwd account;sudo pwdadm -c account
Password:
Sorry, try again.
sudo: 1 incorrect password attempt
Message from syslogd@system at
system local4:alert sudo: funacct : 1 incorrect password attempt ; TTY=pts/0 ; PWD=/home/funacct ; USER=root ; COMMAND=/usr/bin/passwd account
Password:
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
Sorry, try again.
sudo: 1 incorrect password attempt
debug1: channel 0: free: client-session, nchannels 1
Connection to system closed.
debug1: Transferred: stdin 0, stdout 0, stderr 36 bytes in 2.1 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 16.8
debug1: Exit status 1
The password for account on system was successfully changed.
Issue resolved in version 2.5.912
Please download the hotfix from the edmz portal https://hq01.e-dmzsecurity.com/edmzcust
The misconfigured sudo rules needs to be corrected to completed resolve this issue, refer to the Client Setup Guide for the relevant platform for more details to configure the managed system correctly.
© 2024 One Identity LLC. ALL RIGHTS RESERVED. Feedback Terms of Use Privacy Cookie Preference Center