Yang, Tong 3b1f73dece MRS UMN 2.0.38.SP20 version

Reviewed-by: Hasko, Vladimir <vladimir.hasko@t-systems.com>
Co-authored-by: Yang, Tong <yangtong2@huawei.com>
Co-committed-by: Yang, Tong <yangtong2@huawei.com>

2022-12-13 12:03:34 +00:00

3.1 KiB

Raw Permalink Blame History

Unlocking LDAP Users and Management Accounts

Scenario

If the LDAP user cn=pg_search_dn,ou=Users,dc=hadoop,dc=com and LDAP management accounts cn=krbkdc,ou=Users,dc=hadoop,dc=com and cn=krbadmin,ou=Users,dc=hadoop,dc=com are locked, the administrator must unlock these accounts.

If you input an incorrect password for the LDAP user or management account for five consecutive times, the LDAP user or management account is locked. The account is automatically unlocked after 5 minutes.

Procedure

Log in to the active management node as user omm.
Run the following command to go to the related directory:
cd ${BIGDATA_HOME}/om-server/om/ldapserver/ldapserver/local/script
Run the following command to unlock the LDAP user or management account:
./ldapserver_unlockUsers.sh USER_NAME

In the command, USER_NAME indicates the name of the user to be unlocked.

For example, to unlock the LDAP management account cn=krbkdc,ou=Users,dc=hadoop,dc=com, run the following command:

./ldapserver_unlockUsers.sh krbkdc

After the script is executed, enter the password of user krbkdc after ROOT_DN_PASSWORD. If the following information is displayed, the account is successfully unlocked.
```
Unlock user krbkdc successfully.
```

Parent topic: Account Security Settings

3.1 KiB Raw Permalink Blame History

Unlocking LDAP Users and Management Accounts

Scenario

Procedure

3.1 KiB

Raw Permalink Blame History