Change Rocky linux root password

The root password in Rocky Linux serves as the key to managing and securing the system. It grants the highest level of access, allowing you to configure settings, manage users, and troubleshoot issues. However, forgetting the root password can lock you out of these critical functionalities, posing a significant challenge for system administrators. Fortunately, Rocky Linux provides robust methods to reset the root password, ensuring you can regain access without reinstalling the OS. These methods often involve using the GRUB bootloader to enter emergency or rescue mode, enabling password reset through the command line.

Changing the Root Password in Rocky Linux

Changing the root password in Rocky Linux is a critical operation that enhances system security. Here’s a step-by-step explanation of how you can perform this task using the emergency mode and command-line interface:

Boot into GRUB Menu

To change the root password, start by rebooting your system. As the system starts up, press the Esc or Shift key repeatedly to bring up the GRUB menu. Once in the GRUB menu, highlight the default boot entry and press the e key to edit the boot parameters.

Modify Boot Parameters

Navigate to the line that starts with linux using the arrow keys. Append the following parameters to the end of this line to boot into emergency mode:

rd.break enforcing=0

This command temporarily disables SELinux and breaks the boot process, dropping you into an emergency shell.

To proceed, press Ctrl+X to boot with the modified parameters.

Remount the Filesystem

Once in the emergency shell, you’ll find the root filesystem mounted in read-only mode. To make it writable, run:

mount -o remount,rw /sysroot

This command remounts the root filesystem with read and write permissions, allowing you to make changes.

Chroot into the Root Filesystem

To change the root password, you need to access the root filesystem as if it were the main system. Use the chroot command:

chroot /sysroot

Now, any commands you execute will affect the main system.

Change the Root Password

Execute the following command to change the root password:

passwd root

You’ll be prompted to enter and confirm the new password. Make sure the password is strong and secure.

Exit and Reapply SELinux Policies

After changing the password, exit the chroot environment and remount the root filesystem in read-only mode:

exit
mount -o remount,ro /sysroot

To re-enable SELinux policies after the next reboot, run:

setenforce 1

Finally, reboot the system to apply all changes:

reboot

Restoring System Configurations in Rocky Linux

After resetting the root password or encountering system misconfigurations, it’s essential to ensure all system settings are restored correctly to maintain stability and security. Here’s a guide for restoring system configurations:

Verify SELinux Status and Re-enable It

SELinux might have been disabled during the recovery process. To verify its status, use:

sestatus

If disabled, edit the SELinux configuration file:

vi /etc/selinux/config

Set the mode to enforcing:

SELINUX=enforcing

Reboot the system for changes to take effect.

Check File System Integrity

To ensure the file system wasn’t corrupted, use the following:

fsck /dev/sdX

Replace /dev/sdX with your specific partition. Run this for each partition if necessary.

Review Critical Configuration Files

Check and restore critical system files like:

  • /etc/fstab for mount configurations.
  • /etc/hosts for hostname and IP mappings.
  • /etc/passwd and etc for user data integrity.
cat /etc/fstab

Reapply User Permissions

If any user configurations were altered, verify permissions and ownerships using:

chown user:user /home/user -R
chmod 700 /home/user

Replace user with the actual username.

Rebuild the Initramfs (If Necessary)

If the system has trouble booting, rebuilding the initramfs can help:

dracut --force

This ensures your boot process includes all necessary drivers and configurations.

Update System Packages

Ensure your system is up-to-date:

dnf update

This will fix potential vulnerabilities or software bugs introduced during recovery.

Post-Reboot Steps, Logging in, and Securing Rocky Linux

Once the system reboots after resetting the root password, certain steps are necessary to ensure stability and security. These tasks include verifying system functionality, logging in with the new credentials, and performing essential cleanup.

After rebooting, it is crucial to confirm that the system is operating as expected. Begin by accessing the terminal at the login prompt. Use the newly set root password to authenticate. Successful login confirms that the root password reset was successful and that there are no issues with the recovery process.

Next, examine critical system files to ensure they were not altered during the recovery process. Key files include /etc/passwd, which holds user account information, and etc, which contains encrypted password data. To check for anomalies or changes, inspect these files carefully. You can verify their content by running appropriate commands like cat or less to view the files’ structure and data.

System logs provide additional insights into any errors or warnings that may have occurred during the reboot. Use the journalctl or dmesg command to analyze boot-time logs. Any abnormal entries could indicate problems that require immediate attention, such as hardware issues or misconfigured services.

Securing the system involves several key actions. Begin by reviewing all user accounts and privileges. Ensure that unauthorized access has not been granted during recovery. For enhanced security, enforce strong password policies by modifying PAM (Pluggable Authentication Modules) configuration files. This includes enforcing password complexity, expiration, and history rules.

Another critical step is to restore SELinux, if it was temporarily disabled. Security-Enhanced Linux provides mandatory access control policies to safeguard against unauthorized access. Check its status using sestatus, and ensure it is set to enforcing mode for optimal security.

Additionally, apply any pending updates and patches to the system using the dnf update command. Keeping your system updated is essential to protect it against known vulnerabilities. You should also verify the firewall status and rules using firewall-cmd to ensure that only necessary services are exposed to the network.

Conclusion

In summary, resetting the root password in Rocky Linux is a critical task that ensures you maintain control over your system. Whether you’re locked out or need to update the password for security reasons, following the outlined procedures guarantees a smooth and secure recovery process.

Post-reset, focus on reinforcing system security by reviewing configurations, applying updates, and enabling essential security features like SELinux and firewalls. These steps help protect your server from unauthorized access and potential vulnerabilities. Regularly auditing your system’s security measures and maintaining strong passwords is vital for long-term stability. By adhering to best practices, you can confidently manage and secure your Linux environment.

Share:

More Posts

Subscribe
Notify of
guest
0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments