Change password of the account on the standby server of the 3rd party's application clustering environment

book

Article ID: 107444

calendar_today

Updated On:

Products

CA Privileged Access Manager - Cloakware Password Authority (PA) PAM SAFENET LUNA HSM CA Privileged Access Manager (PAM)

Issue/Introduction

The target servers are configured as the clustering environment of the 3rd vendor's application.
It means the application has the clustering feature itself. One server is the active and the other is standby server.
They are registered as the target server of PAM.
The customer needs to apply the same password(auto generated password) of the same account on both servers by schedule job.
As the standby server is reached from PAM normally, PAM cannot change the password then. And it should be failure.

Is it possible to re-try the change password after a few hours when it fails because of the standby server?


Environment

CA Privileged Access Manager r3.1.1

Resolution

There is the feature to change the password for the "Verification failed" status.
 
Credentials >> Manage Targets >> Scheduled jobs >> Click ADD button >> Account Details tab >> Accounts 

There is the ”Verification Failed” check box. It can change password regarding the Verification failed accounts only. 
 

<Please see attached file for image>

User-added image

 

However, there may be a human error to set the password to change and the target group. 
Regarding the situation, the target box that should have a problem is the standby server of the 3rd party application's clustering system, it suggested to synchronize the password between the active box and the standby box. it is recommended it is the best to change the password on the active box side only.

Attachments

1558699110492000107444_sktwi1f5rjvs16jkx.jpeg get_app