Blocked URL causes AWS Access Key Rotation Issue

book

Article ID: 144745

calendar_today

Updated On:

Products

CA Privileged Access Manager (PAM)

Issue/Introduction

AWS Access Key that can be successfully used to connect to the AWS Management Console may sometimes not synchronized.  This is normally done by selecting "Update both the Credential Manager Server and the target system" on the "Key" tab and then entering the Access Key ID and Secret Access Key.  The following error is received: "PAM-CM-3391: AWS Key Pair can be changed only by random generation.

Environment

Release : 3.3

Component : PRIVILEGED ACCESS MANAGEMENT

Resolution

The firewall was reconfigured to allow access to URLs used for AWS access, specifically: iam.amazonaws.com.