Issue:

1.Unable to register webagent with policy server, we see below error in smps.log

[SmObjKeyManagement.cpp:457][ERROR] Failed to decrypt persistent key.

2.While accessing the KeyManagement tab in adminui we will get no session error.

Environment:

Policy server version:12.5x,RDBMS

Cause:

Agent keys are corrupted. More than one set of keys present in key store.

Resolution:

Follow the below steps to register webagent with policy server.

1.Backup the following tables on key-store database.

SMKEYMANAGEMENT4

SMAGENTKEY4

2.After backup delete all records from below tables.

SMKEYMANAGEMENT4

SMAGENTKEY4

3.Restart the Policy server.

4.Restart WAMUI and try to access the Key management tab (this time we won't see no session error).

5.Now go to Adminui>Administration>Policy Server>Key management tab rollover both static and session key.

6.Verify smkeyexport contains only one set of keys. (smkeyexport -dSiteMinder -wpassword -o/temp/keys.txt -l -v -t -c)

7.Now try to register webagent with PolicyServer.