Policy Server on Windows writes "Unable to obtain OS random data" in logs

Article Id: 36823

Status: Published

Updated On: 14-02-2018 07:37

Legacy Id: TEC1344068

Products:

CA Single Sign On Secure Proxy Server (SiteMinder) , AXIOMATICS POLICY SERVER , CA Single Sign On SOA Security Manager (SiteMinder) , CA Single Sign-On , CA Single Sign-On

Issue/Introduction:

Question :

Trying to start the Policy Server on Windows, this one does not
start and report error :

   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:749][ERROR]
    Unable to obtain OS random data
   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:700][ERROR]
    Unable to seed random number generator
   [5588/5404][Wed Jun 17 2015 14:53:10][CCrypto.cpp:174][ERROR]
    Unable to initialize random number subsystem
   [5588/5404][Wed Jun 17 2015 14:53:10][CServer.cpp:3784][ERROR]
    Unable to initialize crypto subsystem

How can I fix this ?

Answer :

Check the account used for the starting and stopping the Policy
Server on Windows. This account should have permissions to
access the CSP service on Windows through those functions :

CryptAcquireContext():
http://msdn2.microsoft.com/en-gb/library/aa379886.aspx
CryptGetRandom():
http://msdn2.microsoft.com/en-gb/library/aa379942.aspx
CryptReleaseContext():
http://msdn2.microsoft.com/en-gb/library/aa380268.aspx

Environment:

Release:
Component: SMPLC