Root Password Changed

[sjmclean]

I have WHM and CPanel installed on CentOS.

First time I logged through WHM with my root account I selected the required configuration options and set to Build.

After the Build was complete, WHM logged out on its own. I tried logging in, but WHM does gives me "This login is invalid" error message. The problem is that the same happens with SSH - I try to log in using the root as username and the password I was using, but they are seen as incorrect.

Seems like my root password has been changed after the EasyApache build was finished. It is for sure that I did not forget the password or not writing correctly, cause even a fellow network admin is trying to access them and we have the password saved.

Anyone encountered such an issue? How can I regain control of my system?

 

[cPanelMichael]

Hello

It sounds like the "root" account could be locked out by cPhulk brute force detection. If the lockout continues, you may need to have your data center obtain console access and disable it with commands such as:

for i in `ps aux | grep -i "cphulkd - process" | awk {'print $2'}` ;do kill -9 $i ;done
/usr/local/cpanel/bin/cphulk_pam_ctl --disable

Thank you.