Linux - DesktopThis forum is for the discussion of all Linux Software used in a desktop context.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
I've just upgraded to Ubuntu 15.10 using the Live CD over an existing 14.04 version. Users that were configured before were lost from /etc/passwd, so I'm trying to re-add them. useradd works find, but when I try (as root) to set the password I get:
# passwd username
Current Kerberos password:
Current Kerberos password:
passwd: Authentication token manipulation error
passwd: password unchanged
I've tried the pre-upgrade password for this user, but that didn't work. I don't even know why it's asking about Kerberos -- I just want this password set it passwd/shadow. I don't recall this question being asked before.
This is a bit of a pain for an otherwise pretty straightforward update.
1. Rename /etc/ssh/ssh_config to something else.
2. Remove krb5-user package from the system
3. Reboot and try changing the password.
If the above steps doesn't work, you should probably try to change your root password by booting from a livecd.
Follow the links below.
[deleted]
I can change the root password without problem. I have the problem with other local users in /etc/passwd. I'd really rather not experiment with removing the krb5-user package just yet. I do need Kerberos for AD authentication.
I tried restoring my 14.04 backup to see if this was a 15.10 issue, but it's not. Same problem with 14.04.
Interestingly, I can log on as a local user (user created and password set before installing Kerberos), but even as that user, if I try to change the password I get the "Current Kerberos password" prompt and subsequent error. So successfully logged in local users can no longer change their passwords! This seems like a pretty serious bug! Surely I'm not the only one experiencing this?! Calling all Kerberos experts!
I'll check with the fellow who helped me set Kerberos up in the first place and post back.
and yes, I was able to change the local user password. This means that the krb5.conf and smb.conf files I posted in my last posting are totally irrelevant. I got the "Current Kerberos password" prompt and "Authentication token manipulation error" with the vanilla, as-installed Kerberos and samba config files.
This indicates to me that ANYONE who has installed Kerberos on Linux (or at least Ubuntu) have all run into this same problem. I would think the solution would be all over the net, but I've found nothing yet!
Usually Kerberos is setup with the company's active directory and I am not sure whether we will be able to change from our local machine. If you are on your work PC or laptop, it might work.
Usually Kerberos is setup with the company's active directory and I am not sure whether we will be able to change from our local machine. If you are on your work PC or laptop, it might work.
Thanks,
Balaji.
Yes, it was set up having to do with the Active Directory, and I suppose it is working find for domain users. However, this issue is with a local user on the Linux workstation (the workstation is a member of the domain). The local user is NOT a domain user and I would think I should be able to change his password w/o interference by Kerberos. Perhaps there is some setting somewhere? Below is my /etc/pam.d/common-password file. Perhaps these specify things to try in some particular order and I need to add or re-arrange? I'm no guru on this, so I need advice.
The safest way is to login into the domain and then change the password. There are products available (Centrify, likewise-open etc) that allows one to login into the domain.
Domain users have no problem logging in. This problem was for a local user (in /etc/passwd only) that is normally not an interactive user, i.e. use for running batch/cron jobs.
But, you bring up a good point. How do domain users change their own passwords? I've tried passwd in a terminal session and "Passwords and Keys" from the desktop utilities. Neither work. Do you have any ideas? I'll have to research ...
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.