Cannot set process environment

book

Article ID: 207949

calendar_today

Updated On:

Products

CA Privileged Access Manager - Server Control (PAMSC)

Issue/Introduction

When CAPIM is running, below is the error.

[development: /prustaff/x231505 ]su - x231505
Enter Windows password for x231505:
Cannot set process environment.

 

 

Cause

If kbl is disabled this works fine, the error only happens with keyboard logger enabled

Environment

Release : 14.1

Component : PAM SERVER CONTROL ENDPOINT WINDOWS

Resolution

The root cause appears to be that our ansible script do not have a task to set umask 022 .

This means /opt/CA will not going to have an executable permission for others.

 

Before:

[development: /opt/cmadmin ]ls -ls /opt

total 32

   0 drwxr-xr-x    3 root     system          256 Sep 25 13:58 BESClient

   0 drwxr-xr--    7 root     system          256 Jan 21 11:45 CA

 

After

drwxr-xr-x    7 root     system          256 Feb  4 07:19 CA

Powered by Wolken Software