UNIX v2 endpoint's administrator account password expired and you cannot modify the endpoint.

book

Article ID: 5996

calendar_today

Updated On:

Products

CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On

Issue/Introduction

After password is expired (eg. after 90 days for RHEL and AIX) for the administrator, the password is changed in the UNIX server. This change causes functions that refer to the endpoint to fail like Explore and Correlation. 

Environment

Applicable to all versions of Identity Manager

Resolution

1. You could try to run an etautil command on the Provisioning Server to reset the password.For example:

etautil -u USER -p PWD -DYN update 'eTNamespaceName=UNIX v2' eTDYNDirectory eTDYNDirectoryName='My_Endpoint_Name' to eTDYNPassword='New_Endpoint_Password' 

The above does not work on all the endpoint types (eg. HPUX) so if it does not work: 

2. Use an ldapbrowser to connect to the Provisioning Repository router (i.e. data later) which is running on the Provisioning Server machine and listening on port 20391 using the Bind DN of "eTDSAContainerName=DSAs,eTNamespaceName=CommonObjects,dc=etadb" with the installation password and then navigate to the object "eTDYNDirectoryName=My_Endpoint_Name,eTNamespaceName=UNIX v2,dc=im,dc=etadb" and enter the clear-text new password into the attribute eTDYNPassword. 

After this try the etautil command again to re-enter the password value so that we re-save the password as an encrypted value.