Policy Server :: The Last Key decoded to Null from the Keystore

book

Article ID: 4012

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) AXIOMATICS POLICY SERVER CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

We're running several Policy Servers in Production. After changing the Encryption Key, one of the Policy Servers started suddenly to give errors in the smps.log :

 

  [ERROR] The last key decoded to null from the keystore

  [ERROR] Failed to generate agent key update commands

 

How can we solve this problem ?

Cause

The Reason for these error messages is that the Encryption Key isn't the same across Policy Servers in your environment.

Environment

Release:
Component: SMPLC

Resolution

To resolve this issue, choose one of the following:

 

From SMCONSOLE -> Keys tab:

 

  - Select Encrypt Keys Using Policy Store Encryption Key

 

  or

 

  - Uncheck "Encrypt Keys Using Policy Store Encryption Key"

    and set the Policy Store key and manually enter the value in the two dialog boxes

 

 Make sure that all Policy Servers are configured the same way in your Environment.