search cancel

UVMS FATAL Failed to decrypt the trust store password...LDAP check will fail

book

Article ID: 253420

calendar_today

Updated On:

Products

CA Automic Dollar Universe

Issue/Introduction

On UVMS where LDAPS is implemented, the UVMS suddenly stopped with the below error in the unistart.log:

FATAL: Failed to decrypt the trust store password...LDAP check will fail. Please verify if the password is correct.

After a stop/start of the UVMS, the issue did not occur anymore.

Environment

Release : 6.x or 7.x

Component: Univiewer Management Server (UVMS)

Context: LDAPs enabled and certificates from the LDAPS server imported into the UVMS default keyStore

Cause

Root cause unknown, most likely issue to read or decrypt the variable SSL_CERT_PASSWORD from values.xml as it generated the error:

FATAL: Failed to decrypt the trust store password...LDAP check will fail. Please verify if the password is correct.

Resolution

Workaround:

Restore the old definition of ldap.xml where SSL is set to NO and port is set back to a LDAP regular port instead of a LDAPS port and then restart the UVMS.

Solution:

Restore the values.xml to the previous version with the correct value for the variable SSL_CERT_PASSWORD and then restart UVMS.

You can validate if the variable SSL_CERT_PASSWORD has the correct value launching the command unicheckldap as the command will fail if unable to connect to the target LDAP server. No need to restart the UVMS to validate if the newer value is correct or not.