search cancel

"No Session" error in adminui and "Failed to decrypt persistent key error" in SMPS log.

book

Article ID: 41750

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On

Issue/Introduction

Issue:

1.Unable to register webagent with policy server, we see below error in smps.log

[SmObjKeyManagement.cpp:457][ERROR] Failed to decrypt persistent key.

2.While accessing the KeyManagement tab in adminui we will get no session error.

Environment:

Policy server version:12.5x,RDBMS

Cause:

Agent keys are corrupted. More than one set of keys present in key store.

Resolution:

Follow the below steps to register webagent with policy server.

1.Backup the following tables on key-store database.

SMKEYMANAGEMENT4

SMAGENTKEY4

2.After backup delete all records from below tables.

SMKEYMANAGEMENT4

SMAGENTKEY4

3.Restart the Policy server.

4.Restart WAMUI and try to access the Key management tab (this time we won't see no session error).

5.Now go to Adminui>Administration>Policy Server>Key management tab rollover both static and session key.

6.Verify smkeyexport contains only one set of keys. (smkeyexport -dSiteMinder -wpassword -o/temp/keys.txt -l -v -t -c)

7.Now try to register webagent with PolicyServer.

Environment

Release: ESPSTM99000-12.51-Single Sign On-Extended Support Plus
Component: