• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar
  • Skip to footer navigation

The Geek Diary

  • OS
    • Linux
    • CentOS/RHEL
    • Solaris
    • Oracle Linux
    • VCS
  • Interview Questions
  • Database
    • oracle
    • oracle 12c
    • ASM
    • mysql
    • MariaDB
  • DevOps
    • Docker
    • Shell Scripting
  • Big Data
    • Hadoop
    • Cloudera
    • Hortonworks HDP

CentOS / RHEL 7 : How to recover from deleted root entry in /etc/shadow and/or /etc/passwd files

by admin

The Problem

The ‘root’ entry was removed from /etc/shadow and /etc/passwd. How to recover the deleted root user entry.

Solution

To be able to recover the deleted root user entry from /etc/shadow and /etc/passwd file, we need to boot the system into single user mode. Follow the steps below to boot the system into single user mode and recover the deleted root user entry.

Booting the system into single user mode

1. Boot the system and press [e] at the Grub Kernel selection whilst highlighting a working Kernel.

select kernel RHEL 7 recover root entry in :etc:shadow file

2. Scroll down to the linux16 line, goto the end of the line and type rd.break.

add rd.break to boot into single user modde RHEL 7

3. Press CTRL+X to boot with the modified options.

4. At the switch_root prompt, remount the system’s root as writable and then switch to it:

switch_root:/# mount -o remount,rw /sysroot
switch_root:/# chroot /sysroot

switch_root prompt recover root entry in passwd file

Recovering the deleted root entry

Once you have booted into the single user mode follow the steps given below to recover the deleted root entry.

1. Add the root entry back into /etc/passwd file. Below shown is the most commonly used attributes of the user root.

# vi /etc/passwd
root:x:0:0:root:/root:/bin/bash

2. Similarly, add the root entry back into /etc/shadow file.

# vi /etc/shadow
root:*::0:99999:7:::

3. Re-create your root password using the passwd command.

# passwd

4. If SELinux is enabled, force a filesystem relabel on reboot by creating the file .autorelabel in the / directory.

# touch /.autorelabel

5. As a final step reboot the server and verify if you can login into the server using the user root.

# reboot
How to recover from deleted root entry in /etc/shadow and/or /etc/passwd files in CentOS / RHEL 6

Filed Under: CentOS/RHEL 7, Linux

Some more articles you might also be interested in …

  1. cal Command Examples in Linux
  2. How to convert a Volume to Stripe (RAID0) Volume in LVM
  3. How to configure iSCSI target using targetcli in CentOS / RHEL 7
  4. How to Configure Device File owner/group with udev rules
  5. cryptcat Command Examples in Linux
  6. pkill: command not found
  7. echo Command Examples in Linux
  8. partprobe Command Examples in Linux
  9. How to Start and Stop OSWatcher
  10. “Read-only locking type set. Write locks are prohibited. Can’t get lock for [volume group]” – error during lvextend

You May Also Like

Primary Sidebar

Recent Posts

  • powertop Command Examples in Linux
  • powertop: command not found
  • powerstat: command not found
  • powerstat Command Examples in Linux

© 2023 · The Geek Diary

  • Archives
  • Contact Us
  • Copyright