Policy Server on Windows writes "Unable to obtain OS random data" in logs

book

Article ID: 36823

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Question :


Trying to start the Policy Server on Windows, this one does not
start and report error :

   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:749][ERROR]
    Unable to obtain OS random data
   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:700][ERROR]
    Unable to seed random number generator
   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:174][ERROR]
    Unable to initialize random number subsystem
   [5588/5404][Wed Jun 17 2015 14:53:10][CServer.cpp:3784][ERROR]
    Unable to initialize crypto subsystem

How can I fix this ?


Answer :

Check the account used for the starting and stopping the Policy
Server on Windows. This account should have permissions to
access the CSP service on Windows through those functions :

 CryptAcquireContext():
  http://msdn2.microsoft.com/en-gb/library/aa379886.aspx
 CryptGetRandom():
  http://msdn2.microsoft.com/en-gb/library/aa379942.aspx
 CryptReleaseContext():
  http://msdn2.microsoft.com/en-gb/library/aa380268.aspx

Environment

Release:
Component: SMPLC