ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

What is the meaning of the KeyMarker 1, 2, 3 and 4 from the Keys data ?

book

Article ID: 185438

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER

Issue/Introduction


When we export the Keys from the Key Store, we see those values :

  objectclass: AgentKey
  Oid: 1b-00050a79-d3ff-1a3b-93fd-00017f000000
  KeyMarker: 4
  Key: {RC2}iQOfZDDkfjRMJXbJ4X0BbCX0nbcR3vmzCAlwQutMcH80X3PrmQbk5dIX5jfn/bg3

  objectclass: AgentKey
  Oid: 1b-0005067f-d3ff-1a3b-93fd-00017f000000
  KeyMarker: 1
  Key: {RC2}p384zg5AIMO1zE2CTXOI81qO3hM/FJ30tgw82aoX4JhP6bZ5lqmWVj7IScWJZ295

  objectclass: AgentKey
  Oid: 1b-00050a76-d3ff-1a3b-93fd-00017f000000
  KeyMarker: 2
  Key: {RC2}RogdW6gq9o8QUM5rGlc3iHS+LY2M2Wz7j2+2zzYlSv0qArNU3j5fLNCfHI0UxWGp

  objectclass: AgentKey
  Oid: 1b-00050a78-d3ff-1a3b-93fd-00017f000000
  KeyMarker: 3
  Key: {RC2}5SXj8EAtkKIBF952L1NqQfjElMPOWd/4FNsx0YiOaidkLDmfjSw/3znlmKzIUFOK

Do the KeyMarker value correspond to the keys we see in the Web Agent logs ?

  [1267/2883577600][Thu Jan 30 2020
  10:52:55][CSmAdminManager.cpp:853][INFO][sm-AgentFramework-00320]
  ADMIN: Received key update attribute 'KEY_UPDATE_PERSISTENT'.

  [1267/2883577600][Thu Jan 30 2020
  10:52:55][CSmAdminManager.cpp:804][INFO][sm-AgentFramework-00320]
  ADMIN: Received key update attribute 'KEY_UPDATE_LAST'.

  [1267/2883577600][Thu Jan 30 2020
  10:52:55][CSmAdminManager.cpp:828][INFO][sm-AgentFramework-00320]
  ADMIN: Received key update attribute 'KEY_UPDATE_CURRENT'.

  [1267/2883577600][Thu Jan 30 2020
  10:52:55][CSmAdminManager.cpp:778][INFO][sm-AgentFramework-00320]
  ADMIN: Received key update attribute 'KEY_UPDATE_NEXT'.

Environment


Policy Server all versions

Resolution


The KeyMarker definitions are:

  1 - Last
  2 - Current
  3 - Next
  4 - Persistent

So the corresponding table applies :

  | KeyMarker  | Value | AgentKey log tag      |
  |------------+-------+-----------------------|
  | Last       |     1 | KEY_UPDATE_LAST       |
  | Current    |     2 | KEY_UPDATE_CURRENT    |
  | Next       |     3 | KEY_UPDATE_NEXT       |
  | Persistent |     4 | KEY_UPDATE_PERSISTENT |
Powered by Wolken Software