000023998 - Unix agent 5.2 / AIX 5.2 preventing users from logging in.

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000023998
Applies ToUnix agent 5.2 on AIX 5.2 error
IBM AIX 5.2
APAR IY86883 installed
IssueWhen trying to login: "3004-007 You entered an invalid login name or password."
Cause

The instructions we provide with Agent for Unix 5.2 mention that the Securid authentication method needs to be configured within the methods.cfg file. This configuration does not seem to take any effect on AIX 5.2 systems where a recent patch cluster has been installed.

After enabling the SECURID authentication method for a user, the following is seen while trying to login:

AIX Version 5
(C) Copyrights by IBM and by others 1982, 2004.
login: mlucini
3004-007 You entered an invalid login name or password.

Resolution

A particular AIX patch (APAR IY86883, see http://www-1.ibm.com/support/docview.wss?uid=isg1IY86883 ) implements some changes in AIX so that the SECURID authentication method needs to be added to the /etc/security/login.cfg configuration file instead of the methods.cfg file.

Add the SECURID authentication method to the /etc/security/login.cfg file as follows:

SECURID:
       program = /opt/ag52/ace/prog/securid_script
       program_64 = /opt/ag52/ace/prog/securid_script

Legacy Article IDa36426

Attachments

    Outcomes