NOTE: This knowledge article is subject to the DISCLAIMER provided at the bottom.
After exporting EEM policies from an old server and having imported them into new EEM, when autosys_secure is attempted to to regenerate certificates, below error is seen:
CA WAAE Security Utility
CAUAJM_E_60204 The instance is running under CA EEM security control but CA EEM is not available.
Do you wish to regenerate the CA EEM certificate and attempt to reconnect? [1(yes)/0(no)]: 1
CAUAJM_I_60150 Attempting to regenerate the CA EEM certificate and reconnect to the CA EEM server.
Input the CA EEM server name(s) (or hit enter to cancel): new_eem_server
CAUAJM_E_60152 You must specify the CA EEM server names previously used to enable external security.
CAUAJM_E_60199 Unable to generate the CA EEM certificate. See previous error messages for details.
CAUAJM_E_60203 Program aborting due to an invalid security environment.
Existing EEM security certificate in Autosys database is invalid and needs to be reset again. It cannot be reset because, the current EEM server cannot be validated properly.
With the help of a DBA, run the following SQL query against your Autosys database to reset the EEM security settings:
Oracle
delete from aedbadmin.ujo_keymaster where hostid = 'SECURITY';
update aedbadmin.ujo_alamode set int_val=0 where type = 'JOB';
update aedbadmin.ujo_alamode set int_val=0 where type = 'EVT';
delete from aedbadmin.ujo_alamode where type = 'SEC';
commit;
SQL Server
BEGIN TRANSACTION;
delete from ujo_keymaster where hostid = 'SECURITY';
update ujo_alamode set int_val=0 where type = 'JOB';
update ujo_alamode set int_val=0 where type = 'EVT';
delete from ujo_alamode where type = 'SEC';
COMMIT TRANSACTION;
Restart the application server and then re-run autosys_secure to enable the EEM integration and EEM certificates again.
DISCLAIMER: The procedure documented herein bypasses the WAAE external security (Embedded Entitlements Manager a.k.a EEM) and hence all security authorization policies setup in EEM for the WAAE instance in question will NOT be available until external security is reactivated. Ensure the WAAE Application server(s) and Scheduler(s) are stopped before carrying out this procedure so that no unauthorized actions (autorep, sendevent, etc) are processed whilst the WAAE instance security is being reset.
For instructions on how to import and export EEM policies, see How To Export and Import EEM Policies (using the GUI)
For instructions on how to uninstall EEM, see Manual Uninstall of EEM