Console Login Issue with pts/1

[metheos]

Sometimes the console for xcp-ng is pts/x ( where x is a positive integer > 0 ) instead of pts/0 pts/x is not in /etc/securetty so it's impossible to log into the console from either xenorchestra or xcp-ng center.

error from /var/log/secure Mar 1 09:47:28 xenserver-test login: pam_securetty(login:auth): access denied: tty 'pts/1' is not secure ! Mar 1 09:47:32 xenserver-test login: FAILED LOGIN 2 FROM pts/1 FOR root, Authentication failure

[stormi]

Thanks for the report. Do you know of any consistent way to reproduce the issue?

[metheos]

Unfortunately I'm not sure what causes it to come up as something other than pts/0 I just know I thought I was crazy when my servers started randomly telling me my passwords were wrong! I decided to SSH to one of them to be sure and it worked fine, so I started digging into it about a week ago. I came up mostly empty handed on the cause, but I decided it was worth a report. Let me know if there's something I can pull to help shed some light on it.

[stormi]

What kind of console do you use? A hardware one (keyboard+screen)? A console to the host in XenOrchestra? Anything else?

[metheos]

Some of them do have a usb keyboard + VGA monitor connected. xo consoles and xcp-ng center consoles are used most frequently. The BMC interfaces are used occasionally (Dell iDRAC or Supermicro BMC).

[stormi]

And does it happen with any of those?

The most obvious explanation that comes to mind to explain the use of pts/1 is that pts/0 would be already in use so it would fall back to pts/1.

[metheos]

I just ran through them again. It can't be the BMC causing it since one of them that has had the problem isn't even licensed for it.

It looks like it might correlate to the ones with local Keyboards and Monitors. 2 of the ones that have the issue right now definitely have a local monitor at the moment.

I only saw a pts/2 once, and that was on the first reboot after upgrading from xenserver 7.0

[lergolas]

I had the same problem.

Edit the file /etc/securetty Add pts/1 and save

This solved my problem!

[john-arvid]

Probably the same problem here. XCP-ng center can login to the server, but using the console through XCP-ng center gives a login incorrect. I can login with ssh.