search cancel

The REST API install cannot proceed. Error: AutoSys requires a key length of 2048 or higher.

book

Article ID: 214669

calendar_today

Updated On:

Products

CA Workload Automation AE - Scheduler (AutoSys)

Issue/Introduction

Installing the AutoSys 12.x REST API component fails with the following messages:

===============================================================================
Security Information Validation
-------------------------------

Error:
[CAUAJM_E_112121] An error occurred while authenticating the CA EEM server
with the certificate-based authentication.
The CA EEM certificate is configured with a certificate of length 1024.
AutoSys requires a key length of 2048 or higher. Therefore, modify the CA EEM
server certificate and re-launch the AutoSys installer..

PRESS <ENTER> TO ACCEPT THE FOLLOWING (OK):

Cause

The EEM server is using a self-signed certificate containing a key that is less than 2048 characters in length.

Prior to EEM version 12.6x, the certificate key length was 1024 characters by default.
New installations and upgrades to EEM 12.6x generate a self-signed certificate with a 2048 character length key.

Where EEM has been settings have been migrated from one server to another, it is possible the old 1024 key has been migrated as well, causing the reported error during the REST API installation.

Environment

EEM 12.6x
AutoSys REST API 12.x

Resolution

You can re-generate the EEM self-signed certificate with a key-length of 2048 characters. You can also retain the 1024 key so you can use both for embedding applications.

Refer to this link for details steps on how to generate the 2048 character-length key and optionally re-import the 1024 character-length key to retain both:

https://techdocs.broadcom.com/us/en/ca-enterprise-software/other/Embedded-Entitlements-Manager/12-6/configuring/certificates-with-custom-key-length-for-ca-eem-server/configure-ca-eem-for-root-certificates-generated-with-different-key-lengths.html