ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

autosys_secure is unable to generate EEM certificate


Article ID: 8645


Updated On:


CA Workload Automation AE - Business Agents (AutoSys) CA Workload Automation AE - Scheduler (AutoSys) Workload Automation Agent


Generating an EEM certificate in autosys_secure results in the following error messages:

CAUAJM_I_60200 CA EEM certificate generated successfully. 
CAUAJM_E_10436 Security server unreachable or invalid authentication certificate file. 
CAUAJM_E_10434 Error initiating security session. 
[EE_BADOBJECT Bad Object] 
[CertificateReader::loadPEM - cannot read certificate] 
[CertificateReader::loadPEM - cannot read certificate] 


This is caused by a lack of permissions to the /tmp directory.


CA Workload Automation AE r11.3+


The /tmp directory must have the following permissions:

drwxrwxrwt or 1777

Also, the owner and group should be set to root.

Run the following commands to correct this:

chmod 1777 /tmp
chown root:root /tmp

After these changes have been made, run autosys_secure to configure EEM Security and generate the certificate.