[HPADM] user can't login from his PC only (Ok to login via other PCs)

Hi,

I've created this new userid slatt1 on a TCB HP-UX 11.23 (Itanium RX2320
box).

Thing is he tried to login too many times previously with incorrect password
& I changed his password and I could login on other PCs. I went to user's
PC & tried login using the very same password & can't login too.

User & myself tried ssh login.

Both user's PC & the other two PCs are on the same subnet so it's not a
firewall issue.

I know in the old Alpha OpenVMS, there's intrusion record that will prevent
/lock a specific IP address from login. Is there such a thing for TCB
HP-UX?


The syslog follows (userid is slatt1, user's PC IP addr is 10.55.6.112 but
the other 2 PCs' IP addresses are not shown in the syslog below - these
other 2 PCs are the ones that could login using the same id/password) :


Jun 24 05:51:45 dsahp01 inet[5188]: Unable to open /etc/tcpd.conf : using
default values
Jun 24 05:51:45 dsahp01 inet[5188]: allowed connection from ntsla15
Jun 24 09:15:38 dsahp01 sshd2[23199]: connection from "10.55.6.112"
Jun 24 09:15:38 dsahp01 sshd2[28834]: WARNING: DNS lookup failed for
"10.55.6.112".
Jun 24 09:15:39 dsahp01 sshd2[28834]: password authentication failed.
Connection from 10.55.6.112 denied. Authentication as u
ser slatt1 was attempted.
Jun 24 09:15:39 dsahp01 sshd2[28834]: Password authentication for user
slatt1 failed (from 10.55.6.112 port 2132).
Jun 24 09:15:52 dsahp01 sshd2[28834]: Remote host disconnected: No supported
authentication methods available
Jun 24 09:15:52 dsahp01 sshd2[28834]: disconnected by application in remote:
'No supported authentication methods available'
Jun 24 09:15:50 dsahp01 sshd2[28834]: password authentication failed.
Connection from 10.55.6.112 denied. Authentication as u
ser slatt1 was attempted.
Jun 24 09:16:13 dsahp01 above message repeats 2 times
Jun 24 09:16:13 dsahp01 inetd[1423]: Reverse lookup for 10.55.6.112 has
failed.
Jun 24 09:15:50 dsahp01 sshd2[28834]: Password authentication for user
slatt1 failed (from 10.55.6.112 port 2132).
Jun 24 09:16:13 dsahp01 above message repeats 2 times
Jun 24 09:16:13 dsahp01 inetd[28895]: ftp/tcp: Connection from unknown
(10.55.6.112) at Wed Jun 24 09:16:13 2009
Jun 24 09:16:13 dsahp01 ftpd[28895]: Unable to open /etc/tcpd.conf : using
default values
Jun 24 09:16:13 dsahp01 ftpd[28895]: allowed connection from 10.55.6.112
Jun 24 09:16:13 dsahp01 ftpd[28895]: FTP server (Revision 1.1 Version
wuftpd-2.6.1(PHNE_34698) Fri Nov 10 10:21:03 GMT 2006)
ready.
Jun 24 09:16:16 dsahp01 ftpd[28895]: FTP LOGIN REFUSED (username in
/etc/ftpd/ftpusers) FROM 10.55.6.112 [10.55.6.112], root
Jun 24 09:16:29 dsahp01 inetd[1423]: Reverse lookup for 10.55.6.112 has
failed.
Jun 24 09:16:29 dsahp01 inetd[28929]: ftp/tcp: Connection from unknown
(10.55.6.112) at Wed Jun 24 09:16:29 2009
Jun 24 09:16:29 dsahp01 ftpd[28929]: Unable to open /etc/tcpd.conf : using
default values
Jun 24 09:16:29 dsahp01 ftpd[28929]: allowed connection from 10.55.6.112
Jun 24 09:16:29 dsahp01 ftpd[28929]: FTP server (Revision 1.1 Version
wuftpd-2.6.1(PHNE_34698) Fri Nov 10 10:21:03 GMT 2006)
ready.
Jun 24 09:16:35 dsahp01 ftpd[28929]: failed login from 10.55.6.112
[10.55.6.112]
Jun 24 09:16:50 dsahp01 inetd[1423]: Reverse lookup for 10.55.6.112 has
failed.
Jun 24 09:16:50 dsahp01 inetd[28965]: ftp/tcp: Connection from unknown
(10.55.6.112) at Wed Jun 24 09:16:50 2009
Jun 24 09:16:50 dsahp01 ftpd[28965]: Unable to open /etc/tcpd.conf : using
default values
Jun 24 09:16:50 dsahp01 ftpd[28965]: allowed connection from 10.55.6.112
Jun 24 09:16:50 dsahp01 ftpd[28965]: FTP server (Revision 1.1 Version
wuftpd-2.6.1(PHNE_34698) Fri Nov 10 10:21:03 GMT 2006)
ready.
Jun 24 09:16:59 dsahp01 ftpd[28965]: failed login from 10.55.6.112
[10.55.6.112]
Jun 24 09:17:04 dsahp01 sshd2[23199]: connection from "10.55.6.112"
Jun 24 09:17:04 dsahp01 sshd2[28982]: WARNING: DNS lookup failed for
"10.55.6.112".
Jun 24 09:17:05 dsahp01 sshd2[28982]: password authentication failed.
Connection from 10.55.6.112 denied. Authentication as u
ser slatt1 was attempted.
Jun 24 09:17:05 dsahp01 sshd2[28982]: Password authentication for user
slatt1 failed (from 10.55.6.112 port 2141).
Jun 24 09:17:18 dsahp01 sshd2[28982]: Remote host disconnected: No supported
authentication methods available
Jun 24 09:17:18 dsahp01 sshd2[28982]: disconnected by application in remote:
'No supported authentication methods available'

Relevant Pages

  • Re: Programmatically login to sharepoint
    ... What authentication methods are enabled for your web server? ... Integrated authentication turned on you should be able to login. ... windows app or asp.net app. ...
    (microsoft.public.sharepoint.portalserver.development)
  • Re: Login Same User on Multiple Machines from just one machine
    ... > a security risk to permit it. ... >>> Does anyone know of a way to login the same user on multiple PCs ... >> target machine. ...
    (microsoft.public.win32.programmer.networks)
  • Re: XP: Cool feature with a weakness
    ... how it is bad to have user video settings effect the login ... There are two general types of PCs: Macs and PCs ...
    (comp.sys.mac.advocacy)
  • Re: Login Same User on Multiple Machines from just one machine
    ... I still need to figure out how to login on several PCs ... >> logging off of one PC all of the PCs assigned to that user should log ... > target machine. ...
    (microsoft.public.win32.programmer.networks)
  • Re: Local policy settings
    ... Just one PC, several PCs, all the PCs? ... One user on multiple PCs? ... > I have checked the Group Policy addon and found logon deny set to nothing ... > and login allow set to everyone. ...
    (microsoft.public.win2000.networking)