Solved: Re: Command set selfpasswd

oconnork · ‎2021-10-19

Hello team,

I hope someone could help me. I have an issue when I push the command 'set selfpasswd' (on clish) on my appliance, the shell change from clish to expert. Do you know why and how I can avoid this ?

Please see below the version of my appliance.

XXX> show version all
Product version Check Point Gaia R80.20
OS build 101
OS kernel version 2.6.18-92cpx86_64
OS edition 64-bit

oconnork · ‎2021-10-22

Well I don't know why but I tried to change my shell in a different way and it worked.

XXX>set user shell admin /etc/cli.sh

XXX>save config

The command set selfpasswd don't change anymore the shell from cli to bash.

Before I was using this command to change my shell : chsh -s /etc/cli.sh admin (in expert shell)

View solution in original post

the_rock · ‎2021-10-19

Weird...I dont have R80.20 to test, but tried on R81 and I dont have that problem. What is exact command you ran?

Andy

oconnork · ‎2021-10-19

I type 'set selfpasswd' then put my old password then I put the new password and that's it.

After that, when I disconnect and reconnect with same user, new password, my shell is changed to expert (linux shell) instead of clish as it was before using the command.

oconnork · ‎2021-10-20

and many thanks for your quick reply Andy,

Kindly,

Kalei

the_rock · ‎2021-10-19

This is what I did in the lab:

R81> set selfpasswd oldpass password@! passwd password@!1

R81> save config

After that, just logged in with new password and set expert password and also enabled winscp with chsh command, thats it.

oconnork · ‎2021-10-20

Command I run :

R80.20> set selfpasswd
Old password:
New password:
R80.20> save config

R80.20> exit

After that i have exited the console and log in again, my shell is in expert instead of clish.. Any explanation for this ?

the_rock · ‎2021-10-21

Not real sure, sorry. I tried this in R80.20 as well and worked fine, no issues. You may want to contact TAC about it. I also confirmed that BEFORE making the change, my shell was indeed in /bin/bash and not in regular shell.

PhoneBoy · ‎2021-10-21

Sounds like a bug and you should involve TAC.

oconnork · ‎2021-10-22

Well I don't know why but I tried to change my shell in a different way and it worked.

XXX>set user shell admin /etc/cli.sh

XXX>save config

The command set selfpasswd don't change anymore the shell from cli to bash.

Before I was using this command to change my shell : chsh -s /etc/cli.sh admin (in expert shell)

the_rock · ‎2021-10-22

That makes sense, but why you had to do it, its beyond me, because I tried it on 2 R80.20 versions and no issues, though shell was in /bin/bash already.

PhoneBoy · ‎2021-10-22

Changing your shell using chsh is not supported.
Most OS settings are part of a configuration database which updates the various Linux files like /etc/passwd, /etc/hosts, and so on.
Any manually applied changes like that will be overridden.

There are a handful of changes you might need to make that aren't managed via clish/WebUI.
Those you should be able to make safely.

the_rock · ‎2021-10-22

O, interesting...I always used to do it via clish, though lately I just execute it via web UI.

Are you a member of CheckMates?

Command set selfpasswd