Gebruikershulpmiddelen

Site-hulpmiddelen

Spoor: clone_de_minimale_debian_8_template upgrade_gluster_node_naar_centos8 scanbd_met_usb_scanner usb_scanner_passthrough_kvm keepass_cut_and_paste ssl_tls align_object_to_face gpg_key_resign ssh_tunnel gitlab_runners
werkinstructies:recover_root_password

Verschillen

Dit geeft de verschillen weer tussen de geselecteerde revisie en de huidige revisie van de pagina.

Link naar deze vergelijking

Beide kanten vorige revisie Vorige revisie
Volgende revisie 		Vorige revisie
werkinstructies:recover_root_password [2016/03/26 14:54]
abel 		werkinstructies:recover_root_password [2018/08/30 08:59] (huidige)
abel
Regel 1: Regel 1:
 ====== Root password recovery on console of CentOS7 ====== ====== Root password recovery on console of CentOS7 ======
  
-there are times you may need to reset the root password which is unknown to you.+There are times you may need to reset the root password which is unknown to you.
  
-This procedure will work fast on systems that have SELinux enabled and large volumes with lots of files which you definitely do not want to relabel as it is timeconsuming meaning long down time.+This procedure will work fast on systems that have SELinux enabled and large volumes with lots of files which you definitely do not want to relabel as it is timeconsuming resulting in long down time.
  
-So, get on to the console, reboot the server and interupt the bootproces by pressing the up arrow buttonand you get a list of boot profiles not unlike: +  * Get on to the console, reboot the server and interupt the bootproces by pressing the up arrow button and you get a list of boot profiles not unlike:<code>
-<code>+
 CentOS Linux (3.10.0-327.10.1.el7.x86_64) 7 (Core) CentOS Linux (3.10.0-327.10.1.el7.x86_64) 7 (Core)
 CentOS Linux (3.10.0-327.3.1.el7.x86_64) 7 (Core) CentOS Linux (3.10.0-327.3.1.el7.x86_64) 7 (Core)
Regel 14: Regel 13:
 </code> </code>
  
-from the list of boot profiles chose the last and pres ''e'' to edit the boot profile.+  * From the list of boot profiles chose the latest, which is at the top, and pres ''e'' to edit the boot profile.
  
-find the line that starts with ''linux16 /vmlinuz-3.10......''+  * Find the line that starts with ''linux16''. In our case:<code> 
 +linux16 /vmlinuz-3.10.1.0-327.10.1.el7.x86_64 root=/dev/mapper/centos-root  
 +ro rd.lvm.lv=centos/swap vconsole.font=tatarcyrheb-sun16 rd.lvm.lv=centos/root 
 +craskkernel=auto  vconsole.keymap=us rhgb quiet LANG=en_US.utf8 
 +</code> 
 + 
 +  * Replace ''ro'' with ''rw'' and add to the end of that line: ''rd.break enforce=0''<code> 
 +linux16 /vmlinuz-3.10.1.0-327.10.1.el7.x86_64 root=/dev/mapper/centos-root  
 +rw rd.lvm.lv=centos/swap vconsole.font=tatarcyrheb-sun16 rd.lvm.lv=centos/root 
 +craskkernel=auto  vconsole.keymap=us rhgb quiet LANG=en_US.utf8 rd.break enforce=0 
 +</code> 
 +  * Now press ''Ctrl x'' 
 + 
 +<note tip> you could remove ''rhgb quiet'' to get more info on the boot proces in case of trouble.</note> 
 + 
  
-replace ''ro'' with ''rw'' and aad to the end of that line: ''rd.break enforce=0''+The system boots and presents you with a prompt: ''switch_root:/# _''. We need to chroot to the filesystem on which the ''/etc/shadow'' file is present. 
  
-now press ''Ctrl x''+  * Do so by: ''chroot /sysroot'' your prompt changes to ''sh-4.2# _''
  
-the system boots and presents you with a prompt: ''switch_root:/# _''+  * Change the root password ''passwd root'' and enter your new password.
  
-We need to chroot to the filesystem on which the /etc/shadow file is present, do so by: ''chroot /sysroot'' your prompt changes to ''sh-4.2# _''+Now we need to continue the boot proces.
  
-Change the root password ''passwd root'' and enter your new password.+  * Do so by exiting the chroot shell ''exit'' and then the rescue shell ''exit''.
  
-now we need to continue the boot proces, do so by exiting the chroot shell ''exit'' and then the rescue shell ''exit'' .+The boot process continues and you are presented by the regular login prompt.\\ 
 +However, we forced the system to boot in SELinux permissive mode because we needed to alter the shadow password fileWe need to correct this:
  
-The boot process continues and you are presented by the regular login prompt.+  * Log in (with your new password)
  
-However, we forced the system to boot in SELinux permissive mode because we altered the shadow password file, we need to correct this.+  * Restore the SELinux context of the shadow password file: ''restorecon /etc/shadow''
  
-  * first restore the SELinux context of the shadow password file: ''restorecon /etc/shadow'' +  * Set SELinux to enforcing again : ''setenforce 1''
-  * second set SELinux to enforcing again : ''setenforce 1''+
  
 +Done.
  
  
werkinstructies/recover_root_password.1459000455.txt.gz · Laatst gewijzigd: 2016/03/26 14:54 door abel

Paginahulpmiddelen

Tenzij anders vermeld valt de inhoud van deze wiki onder de volgende licentie: CC Attribution-Share Alike 4.0 International
CC Attribution-Share Alike 4.0 International Donate Powered by PHP Valid HTML5 Valid CSS Driven by DokuWiki