Description

The user tries to perform a valid suexec operation and receives an error message similar to the following:

The new passwords don't match

The BoKS audit LOG shows that the suexec operation fails with error message "$servc_error.err109". This error is not documented in ${BOKS_etc}/mess.d/*.eng (or the older ${BOKS_lib}/mess.eng).

The problem is there is a "#" character in the user's password. This is an invalid character and can only be set outside of BoKS or by a BoKS administrator via the command line or old GUI. This character is still reserved for non-interactive password change.

This functionality still exists for suexec on all platforms and authentication binaries on non-PAM-based systems. This does not work with all commands nor on all systems and it will likely be removed in a future version.


Resolution / Workaround

Workaround:

Have the user change the password so that it does not include the "#" character.

Resolution:

This functionality is removed in versions greater than 7.0 or by installing one of the following version-specific hotfixes:

Product version Hotfix
BoKS Manager or BoKS Server Agent for UNIX/Linux versions 6.5.x TFS150903-011660
BoKS Manager or BoKS Server Agent for UNIX/Linux versions 6.6.x and 6.7.0 HFBM-0078
BoKS Manager or BoKS Server Agent for UNIX/Linux version 7.0 HFBM-0079


Still have questions? We can help. Submit a case to Technical Support.

Last Modified On: May 25, 2018