Field Notes: admin locked out of an FreeIPA/IDM server

Posted by Mike on 2016.02.16

If you ever have mornings where the coffee isn’t strong enough and your memory is still covered in more fog then the Golden Gate Bridge you should probably not work on important things.

If you do and you find you put in the wrong password for admin multiple times, you may find that you lock out the admin user.

But don’t worry, this is why we have replicants!

Quickly ssh over to one of the replicants, gain admin access (make sure you know the right password this time!) and then unlock the admin account using the following command:

# ipa user-unlock admin

Best of Luck!


Leave a Reply

Your email address will not be published. Required fields are marked *


six + = 10

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Speaking at UTOSC 2012 Member of The Internet Defense League