Cannot edit "SSL Trust Store Location" and "Password" when configuring "New Authentication system" in dSeries (WA DE)
search cancel

Cannot edit "SSL Trust Store Location" and "Password" when configuring "New Authentication system" in dSeries (WA DE)

book

Article ID: 254543

calendar_today

Updated On:

Products

CA Workload Automation DE

Issue/Introduction

User is unable edit "SSL Trust Store Location" and "SSL Trust Store Password" fields when trying to add "New Authentication system".

 

Environment

Component: Workload Automation ESP dSeries (DE)

Release : 12.x

Cause

If at any point an SSL truststore was added, the dSeries manager will hard code it in db.properties.

#Added by Manager
javax.net.ssl.trustStorePassword=XXXXXXXXXXXXX
javax.net.ssl.trustStore=/opt/CA/keystore/somestore
 
 

Resolution

Delete all the entries under Authentication Systems.

Remove or comment both of the "javax.net.ssl.trustStore" lines from db.properties.  

Restart dSeries service and then add an Authentication System.   All the fields should be blank and editable for new system.

 

Note: Only one SSL trust store can be used. If more than one Authentication system (AD/LDAP), all the systems will have to use the same SSL trust store and associated password.   The trust store can store multiple certificates for different LDAP server.  To import or add certificates, use keytool  command, see this link for details.

Attachments