This document describes login and permissions problems for non-root users and how they can be solved by checking permissions, owner, and group for specific directories and files.
This document is applicable to AIX Versions 3.x and 4.x.
The product documentation library is also available:
The primary group for that user as found in /etc/passwd cannot
be found in the /etc/group file. In this example, the group is 1. Check /etc/group and make
sure the group number 1 exists. 0653-345 permission denied ksh: pwd: Cannot access parent directories These symptoms are caused by the user not being able to execute the login
shell (ksh, csh, or bsh, depending upon which is being used) or by a
permissions problem in the home directory path.
The following steps show how to check the files and directories that may
have a problem with permissions, owner, or group.
If there is a problem with any of the files or directories, use chmod,
chown, or chgrp to change the permissions, ownership, or group.
If a symbolic link is missing, use the ln command to recreate it.
For example, to create /bin linked to /usr/bin, run the following command:
Check for the /etc/nologin file with
If the file /etc/nologin exists, delete it with
For AIX 4.x enter:
Example output:
Example output:
Example output:
Determine the user's home directory. In these steps, we will refer to the
user's ID and directory as "user_one". ls -ld u/user_one (use path of user's directory)
Example output:
The directory should be owned by the user and the user should have rwx
permissions. Example output:
The owner of the "." directory should be the user. The permissions on the
".." directory should be at least r-x for group and r-x for other. In order to check the permissions on the mount point, the file system must
first be unmounted. Some file systems' mount points can only be checked from
service mode after booting from boot media.
The permissions of the underlying mount point should be at least d--x--x--x,
but full permissions (drwxrwxrwx) are recommended. The permission setting of
the mounted file system can be used to restrict access.
[ Doc Ref: 90605225214682 Publish Date: Oct. 02, 2000 4FAX Ref: 4509 ]
Related documentation
http://www.rs6000.ibm.com/resource/aix_resource/Pubs/index.html
Symptoms
3004-010 failed setting terminal ownership and mode
tps:!:215:1::/u/tps:/bin/ksh
3004-009 failed running login shell
or
system unavailable
3004-505 Cannot set process environment
(when attempting to do anything after the login)
or
(when issuing pwd, after login)
Steps to check problem files and directories
ln -s /usr/bin /bin
Steps
ls -l /etc/nologin
rm /etc/nologin
cd /
ls -al
drwxr-xr-x 19 bin bin 1024 Dec 12 21:14 .
drwxr-xr-x 19 bin bin 1024 Dec 12 21:14 ..
lrwxrwxrwx 1 bin bin 8 Nov 22 09:37 bin -> /usr/bin
drwxrwxr-x 4 root system 2048 Dec 12 21:12 dev
drwxr-xr-x 12 root system 2048 Dec 12 21:11 etc
drwxr-xr-x 5 bin bin 512 Nov 22 14:51 home
lrwxrwxrwx 1 bin bin 8 Nov 22 09:37 lib -> /usr/lib
drwxr-xr-x 20 bin bin 512 Nov 22 13:33 lpp
drwxr-xr-x 3 bin bin 512 Nov 22 09:37 sbin
lrwxrwxrwx 1 bin bin 5 Nov 22 09:37 u -> /home
drwxr-xr-x 20 bin bin 512 Nov 22 14:24 usr
drwxr-xr-x 12 bin bin 512 Nov 22 12:59 var
ls -ld /usr/bin /usr/lib /tmp
drwxr-xr-x 3 bin bin 10752 Nov 22 12:53 /usr/bin
drwxr-xr-x 28 bin bin 4096 Dec 15 17:08 /usr/lib/
drwxrwxrwt 8 bin bin 2560 Jan 22 14:46 /tmp/
ls -l /usr/bin/csh /usr/bin/ksh /usr/bin/bsh
-r-xr-xr-x 2 bin bin 341020 Nov 22 09:37 /usr/bin/bsh
-r-xr-xr-x 1 bin bin 154412 Nov 22 09:37 /usr/bin/csh
-r-xr-xr-x 4 bin bin 230148 Nov 22 09:37 /usr/bin/ksh
-drwxr-xr-x 9 user_one system 7680 Dec 24 15:00 /u/user_one
cd /u/user_one
ls -al | pg
drwxr-xr-x 9 user_one system 7680 Dec 24 15:00 .
drwxr-xr-x 71 bin bin 1536 Dec 14 09:37 ..