Added a new user on Ubuntu, set password not working?
I created a new user:
$ sudo useradd -m Ari -p pass123
But when I went to login it said the password was incorrect, I know it's correct because I saved the command line log as a text file.
Other than that, at the same time I also created a group:
$ sudo groupadd testgroup1
and added the new account to it:
$ sudo usermod -a -G testgroup1 Ari
Why can't a log in?
users group
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
add a comment |
I created a new user:
$ sudo useradd -m Ari -p pass123
But when I went to login it said the password was incorrect, I know it's correct because I saved the command line log as a text file.
Other than that, at the same time I also created a group:
$ sudo groupadd testgroup1
and added the new account to it:
$ sudo usermod -a -G testgroup1 Ari
Why can't a log in?
users group
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
2
On Ubuntu, as in Debian, you're supposed to useadduserandaddgroup. That takes care of Stuff for you.
– Faheem Mitha
Mar 23 at 13:57
add a comment |
I created a new user:
$ sudo useradd -m Ari -p pass123
But when I went to login it said the password was incorrect, I know it's correct because I saved the command line log as a text file.
Other than that, at the same time I also created a group:
$ sudo groupadd testgroup1
and added the new account to it:
$ sudo usermod -a -G testgroup1 Ari
Why can't a log in?
users group
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
I created a new user:
$ sudo useradd -m Ari -p pass123
But when I went to login it said the password was incorrect, I know it's correct because I saved the command line log as a text file.
Other than that, at the same time I also created a group:
$ sudo groupadd testgroup1
and added the new account to it:
$ sudo usermod -a -G testgroup1 Ari
Why can't a log in?
users group
users group
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
asked Mar 23 at 13:32
Ari VictorAri Victor
1334
1334
2
On Ubuntu, as in Debian, you're supposed to useadduserandaddgroup. That takes care of Stuff for you.
– Faheem Mitha
Mar 23 at 13:57
add a comment |
2
On Ubuntu, as in Debian, you're supposed to useadduserandaddgroup. That takes care of Stuff for you.
– Faheem Mitha
Mar 23 at 13:57
2
2
On Ubuntu, as in Debian, you're supposed to use
adduser and addgroup. That takes care of Stuff for you.– Faheem Mitha
Mar 23 at 13:57
On Ubuntu, as in Debian, you're supposed to use
adduser and addgroup. That takes care of Stuff for you.– Faheem Mitha
Mar 23 at 13:57
add a comment |
1 Answer
1
active
oldest
votes
The -p option is looking for an encrypted password:
-p, --password PASSWORD
The encrypted password, as returned by crypt(3). The default is to disable the
password.
Note: This option is not recommended because the password (or encrypted password) will
be visible by users listing the processes.
You should make sure the password respects the system's password policy.
You should use the following to change the password:
sudo passwd Ari
In order to use the -p option you must first encrypt the password. You can use some of the methods mentioned here such as:
$ mkpasswd
Password:
1puqSPGTnyi5o
$ sudo useradd -m Ari -p 1puqSPGTnyi5o
Note the mkpasswd utility is included in the whois package which can be obtained through apt
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
What would be the correct way to do it from the terminal?$ sudo useradd -m Ari pass123or just creating the user then doing as you suggest?
– Ari Victor
Mar 23 at 13:54
1
The preferred and safe way is to set the password separately withpasswdbut I have updated the question to include instructions on encrypting a password for use withuseradd -p
– Jesse_b
Mar 23 at 14:12
3
Don't useopenssl passwd, and especially not with-crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$and$6$), which are the ones commonly used on Linux-systems.
– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, usechpasswd. By default it runs the change through PAM, so you get a) the same hashing as withpasswd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g.-c SHA512, too, if you do need to bypass PAM.
– ilkkachu
Mar 23 at 16:19
add a comment |
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "106"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f508170%2fadded-a-new-user-on-ubuntu-set-password-not-working%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
The -p option is looking for an encrypted password:
-p, --password PASSWORD
The encrypted password, as returned by crypt(3). The default is to disable the
password.
Note: This option is not recommended because the password (or encrypted password) will
be visible by users listing the processes.
You should make sure the password respects the system's password policy.
You should use the following to change the password:
sudo passwd Ari
In order to use the -p option you must first encrypt the password. You can use some of the methods mentioned here such as:
$ mkpasswd
Password:
1puqSPGTnyi5o
$ sudo useradd -m Ari -p 1puqSPGTnyi5o
Note the mkpasswd utility is included in the whois package which can be obtained through apt
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
What would be the correct way to do it from the terminal?$ sudo useradd -m Ari pass123or just creating the user then doing as you suggest?
– Ari Victor
Mar 23 at 13:54
1
The preferred and safe way is to set the password separately withpasswdbut I have updated the question to include instructions on encrypting a password for use withuseradd -p
– Jesse_b
Mar 23 at 14:12
3
Don't useopenssl passwd, and especially not with-crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$and$6$), which are the ones commonly used on Linux-systems.
– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, usechpasswd. By default it runs the change through PAM, so you get a) the same hashing as withpasswd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g.-c SHA512, too, if you do need to bypass PAM.
– ilkkachu
Mar 23 at 16:19
add a comment |
The -p option is looking for an encrypted password:
-p, --password PASSWORD
The encrypted password, as returned by crypt(3). The default is to disable the
password.
Note: This option is not recommended because the password (or encrypted password) will
be visible by users listing the processes.
You should make sure the password respects the system's password policy.
You should use the following to change the password:
sudo passwd Ari
In order to use the -p option you must first encrypt the password. You can use some of the methods mentioned here such as:
$ mkpasswd
Password:
1puqSPGTnyi5o
$ sudo useradd -m Ari -p 1puqSPGTnyi5o
Note the mkpasswd utility is included in the whois package which can be obtained through apt
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
What would be the correct way to do it from the terminal?$ sudo useradd -m Ari pass123or just creating the user then doing as you suggest?
– Ari Victor
Mar 23 at 13:54
1
The preferred and safe way is to set the password separately withpasswdbut I have updated the question to include instructions on encrypting a password for use withuseradd -p
– Jesse_b
Mar 23 at 14:12
3
Don't useopenssl passwd, and especially not with-crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$and$6$), which are the ones commonly used on Linux-systems.
– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, usechpasswd. By default it runs the change through PAM, so you get a) the same hashing as withpasswd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g.-c SHA512, too, if you do need to bypass PAM.
– ilkkachu
Mar 23 at 16:19
add a comment |
The -p option is looking for an encrypted password:
-p, --password PASSWORD
The encrypted password, as returned by crypt(3). The default is to disable the
password.
Note: This option is not recommended because the password (or encrypted password) will
be visible by users listing the processes.
You should make sure the password respects the system's password policy.
You should use the following to change the password:
sudo passwd Ari
In order to use the -p option you must first encrypt the password. You can use some of the methods mentioned here such as:
$ mkpasswd
Password:
1puqSPGTnyi5o
$ sudo useradd -m Ari -p 1puqSPGTnyi5o
Note the mkpasswd utility is included in the whois package which can be obtained through apt
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
The -p option is looking for an encrypted password:
-p, --password PASSWORD
The encrypted password, as returned by crypt(3). The default is to disable the
password.
Note: This option is not recommended because the password (or encrypted password) will
be visible by users listing the processes.
You should make sure the password respects the system's password policy.
You should use the following to change the password:
sudo passwd Ari
In order to use the -p option you must first encrypt the password. You can use some of the methods mentioned here such as:
$ mkpasswd
Password:
1puqSPGTnyi5o
$ sudo useradd -m Ari -p 1puqSPGTnyi5o
Note the mkpasswd utility is included in the whois package which can be obtained through apt
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
edited Mar 23 at 16:22
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
answered Mar 23 at 13:35
Jesse_bJesse_b
14.3k23573
14.3k23573
What would be the correct way to do it from the terminal?$ sudo useradd -m Ari pass123or just creating the user then doing as you suggest?
– Ari Victor
Mar 23 at 13:54
1
The preferred and safe way is to set the password separately withpasswdbut I have updated the question to include instructions on encrypting a password for use withuseradd -p
– Jesse_b
Mar 23 at 14:12
3
Don't useopenssl passwd, and especially not with-crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$and$6$), which are the ones commonly used on Linux-systems.
– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, usechpasswd. By default it runs the change through PAM, so you get a) the same hashing as withpasswd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g.-c SHA512, too, if you do need to bypass PAM.
– ilkkachu
Mar 23 at 16:19
add a comment |
What would be the correct way to do it from the terminal?$ sudo useradd -m Ari pass123or just creating the user then doing as you suggest?
– Ari Victor
Mar 23 at 13:54
1
The preferred and safe way is to set the password separately withpasswdbut I have updated the question to include instructions on encrypting a password for use withuseradd -p
– Jesse_b
Mar 23 at 14:12
3
Don't useopenssl passwd, and especially not with-crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$and$6$), which are the ones commonly used on Linux-systems.
– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, usechpasswd. By default it runs the change through PAM, so you get a) the same hashing as withpasswd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g.-c SHA512, too, if you do need to bypass PAM.
– ilkkachu
Mar 23 at 16:19
What would be the correct way to do it from the terminal?
$ sudo useradd -m Ari pass123 or just creating the user then doing as you suggest?– Ari Victor
Mar 23 at 13:54
What would be the correct way to do it from the terminal?
$ sudo useradd -m Ari pass123 or just creating the user then doing as you suggest?– Ari Victor
Mar 23 at 13:54
1
1
The preferred and safe way is to set the password separately with
passwd but I have updated the question to include instructions on encrypting a password for use with useradd -p– Jesse_b
Mar 23 at 14:12
The preferred and safe way is to set the password separately with
passwd but I have updated the question to include instructions on encrypting a password for use with useradd -p– Jesse_b
Mar 23 at 14:12
3
3
Don't use
openssl passwd, and especially not with -crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$ and $6$), which are the ones commonly used on Linux-systems.– ilkkachu
Mar 23 at 16:15
Don't use
openssl passwd, and especially not with -crypt. It uses the obsolete DES-based crypt function, which among other things is limited to only 8-characters passwords (and 2-character salts). The openssl on my system does support the MD5-based hash ($1$), but not the newer SHA2-based hashes ($5$ and $6$), which are the ones commonly used on Linux-systems.– ilkkachu
Mar 23 at 16:15
If you need to batch change passwords, use
chpasswd. By default it runs the change through PAM, so you get a) the same hashing as with passwd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g. -c SHA512, too, if you do need to bypass PAM.– ilkkachu
Mar 23 at 16:19
If you need to batch change passwords, use
chpasswd. By default it runs the change through PAM, so you get a) the same hashing as with passwd, and b) the passwords updated to whatever it is your system actually uses (in case you have e.g. LDAP). It also does support e.g. -c SHA512, too, if you do need to bypass PAM.– ilkkachu
Mar 23 at 16:19
add a comment |
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f508170%2fadded-a-new-user-on-ubuntu-set-password-not-working%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
2
On Ubuntu, as in Debian, you're supposed to use
adduserandaddgroup. That takes care of Stuff for you.– Faheem Mitha
Mar 23 at 13:57