I can't login w/ root account via SSH/Shell after ingress PVE on AD domain

S

Suporte NCA

New Member
Feb 28, 2025
3
0
1
Hi.


I instaled a PVE7.4 on Dell R710.

Setup a VM Win2019 server w/ AD. Setup others VMs, Windows and Linux. I can login in any VM normally with my AD user.

On web interface of PVE, i setup de AD and be able to login in. All rigth.


But, now, i can't login via ssh or shell w/ root user or my domain user.

In permissions, i create on rule: "/" for group "ProxmoxAdmins" (AD Group) and seted "Administrator" permission for it.

I can login in web interface w/ my AD user, change VMs, datastores, etc..

But, now, i can't login with root user on web interface (Selected PAM for login) and i can't login on ssh/shell w/ root or any other domain user.

So.. Witch any domain users I can login in web interface. But can't login in shh/shell.
Witch root user, i can't login in shh, shell or webinterface.

Of course, i don't changed the root password.


I'm stuck here.
 
configuring AD as realm doesn't touch the local root user. either you or somebody else must have changed the password or disabled the root user, or you are not using the correct password. you can use a live CD to boot the system and reset the root password.
 
fabian said:
configuring AD as realm doesn't touch the local root user. either you or somebody else must have changed the password or disabled the root user, or you are not using the correct password. you can use a live CD to boot the system and reset the root password.
Click to expand...

No one changed the password... I have 3 servers with the same password. The others are not in the domain.

And my domain user is pve admin and I can't change the root password.
I created a new user, but I can't change the password either.

The message: "Permission check failed (403)"

See the images below.
 

Attachments

  • Screenshot_4.png
    Screenshot_4.png
    20.3 KB · Views: 5
  • Screenshot_3.png
    Screenshot_3.png
    9.4 KB · Views: 5
  • Screenshot_2.png
    Screenshot_2.png
    23.6 KB · Views: 4
  • Screenshot_1.png
    Screenshot_1.png
    60.9 KB · Views: 5
that is normal, only root can change the root password.
 
fabian said:
that is normal, only root can change the root password.
Click to expand...

What about another user?
I created a new user, vp-usr, but I can't set a password for it either.

I need to log into the shell and I'm stuck.
(I'm creating a Cluster, but without the shell to correct a network parameter, I can't move forward. Nor can I join the other servers to the cluster)
 
for other users, it depends on your permissions and the realm (not all realm types support changing the password from within PVE).
 
You must log in or register to reply here.
Top Bottom