Embedded Gateway bundle not getting up.
search cancel

Embedded Gateway bundle not getting up.

book

Article ID: 431238

calendar_today

Updated On:

Products

CA API Gateway

Issue/Introduction

We are facing an issue related to the embedded gateway JSON bundle. We deleted one private key and replaced it with a new private key using the same alias name on the gateway. However, after creating the JSON bundle and placing it on the machine, the machine is not coming up. We have tried multiple reboots, but it’s still the same.

Environment

11.1.2

Resolution

The main problem is that the bundle which is missing information around the audit config 

The 

 "auditConfigurations": [
    {
      "goid": "00000000000000040000000000000001",
      "name": "AuditConfig",
      "checksum": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
      "sinkPolicyName": "[Internal Audit Sink Policy]"
    }

is missing the information for the lookup policy and should look like 

  "auditConfigurations": [
    {
      "goid": "00000000000000040000000000000001",
      "name": "AuditConfig",
      "checksum": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",

      "alwaysSaveInternal": false,
      "lookupPolicyName": "[Internal Audit Lookup Policy]",
      "sinkPolicyName": "[Internal Audit Sink Policy]"
    }

Also the cwp for the  Internal Audit Lookup Policy is missing and the policy itself 

   {
      "goid": "xxxxxxxxxxxxxxxxxx",
      "name": "audit.lookup.policy.guid",
      "checksum": "axxxxxxxxxxxxxxxxxxxxxxxxxxx",
      "description": "GUID of internal policy to invoke when retrieving audit messages from an external source, or empty to use internal audit database (default=empty)",
      "hiddenProperty": true,
      "value": "xxxxxxxxxxxxxxxxxxxxxxxxxx"
    },

    {
      "goid": "xxxxxxxxxxxxxxxxxxxxxxxxx",
      "guid": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
      "name": "[Internal Audit Lookup Policy]",
      "policyType": "INTERNAL",
      "tag": "audit-lookup",
      "checksum": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
      "folderPath": "/",
      "soap": false,
      "policy": {
        "json": "{\"All\":[{\"Comment\":\"Update this policy with your own audit lookup logic.\"}]}"
      }

Gateway 11.1.1 does accept a bundle without these settings but gateway 11.1.2 throws a error on it .

the solution would be to make sure the config on a running gateway is correct recreate the audit config setting in policymanager .

export this config using graphman and use the correct schema version 11.1.2 .

Powered by Wolken Software