Load Balancing ENTM install fails at 18%

book

Article ID: 7900

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction

Load Balancing ENTM install fails at 18%, with the following dialog: 

 

Message Queue Settings 

Connection Error

Environment

Release:
Component: SEOSPP

Resolution

1. On the primary ENTM, encrypt the communications password.

In a command prompt navigate to the following directory where <AccessControlServer> is the location where the ENTM software is installed:

<AccessControlServer>\IAM Suite\Access Control\tools\PasswordTool

Then execute:

pwdtools -FIPS -p "<COMMUNICATIONS PASSWORD>" -k <PATH_TO>/FIPSkey.dat 

Note that <PATH_TO>/FIPSkey.dat is usually <jboss>\server\default\deploy\IdentityMinder.ear\config\com\netegrity\config\keys\FIPSkey.dat

This will return something like: 

Plain Text: <COMMUNICATIONS PASSWORD> 

Encrypted value: {AES}:0+43rQul8WkZBlbLel7hW5osYy/UxY0T5/Mmeq2Kh2Q= 

The documentation on encrypting plain text passwords is located here:

https://docops.ca.com/ca-privileged-access-manager-server-control/14-0/EN/implementing/ca-privileged-access-manager-server-control-service-accounts-interact-with-ca-privileged-access-manager-server-control-components/password-change-procedures#PasswordChangeProcedures-EncryptaClearTextPassword

 

2. Insert the required data into the tblAlterUsers table, replacing {AES}:0+43rQul8WkZBlbLel7hW5osYy/UxY0T5/Mmeq2Kh2Q= with the value you generate with pwdtools in step 1 above: 

 

INSERT INTO tblAlterUsers (loginid, lastname, firstname, password) VALUES ('alteruser', 'Alter','User', '{AES}:0+43rQul8WkZBlbLel7hW5osYy/UxY0T5/Mmeq2Kh2Q=') 

 

3. On the LB ENTM server uninstall the ENTM and 3rd party components. Then install the 3rd party components and LB ENTM again.