CA PIM12.8SP1 sepass with syntax error
search cancel

CA PIM12.8SP1 sepass with syntax error

book

Article ID: 99425

calendar_today

Updated On:

Products

CA Virtual Privilege Manager CA Privileged Identity Management Endpoint (PIM) CA Privileged Access Manager (PAM)

Issue/Introduction

With passwd_local_encryption_method set to sha512, sepass produces one of the following errors.

$ sepass 
CA ControlMinder sepass v12.81.0.3361 - Password replacement 
Copyright (c) 2013 CA. All rights reserved. 
Enter dummy's old password: 
Enter new password: <--- password contains a comma 
Verify new password: 
(localhost) 
Native: 
=== 
ERROR: Failed to update USER dummy 
ERROR: You cannot use more than one value for
property OLD_PASSWD 

$ sepass 
CA ControlMinder sepass v12.81.0.3361 - Password replacement 
Copyright (c) 2013 CA. All rights reserved. 
Enter dummy's old password: 
Enter new password: <-- password contains a round bracket
Verify new password: 
Syntax error: Illegal user name or password. 

Environment

Privileged Identity Manager 12.8 SP1

Cause

Certain special characters in the password was being parsed into multiple chunks.

Resolution

The problem was fixed with patch T5C1161, which is build 12.81.0.3374 of PAM. Upgrade to any build newer than 3374 and the fix will be included.
 

Additional Information

The latest builds of PIM can be found here: https://support.broadcom.com/external/content/release-announcements/CA-PRIVILEGED-IDENTITY-MANAGER-ENDPOINT-COMPATIBILITY-MATRIX/16769

Powered by Wolken Software