Layer7 Identity Management

Expand all | Collapse all

We are unable to explorer/corelate CA ACF2 Endpoint, after Adding ACF2 End point when we are trying to Explore/Corelate and it gives error

  • 1.  We are unable to explorer/corelate CA ACF2 Endpoint, after Adding ACF2 End point when we are trying to Explore/Corelate and it gives error

    Posted 10-05-2015 10:28 AM

    We are unable to explorer/corelate CA ACF2 Endpoint, after Adding ACF2 End point when we are trying to Explore/Corelate it gives the below error:

     

    2015.10.05.10:20:00.198   ERROR DBS3_test - Unable to authenticate to CN=etaadmin,host=dsb3_im: ACF01032 LOGONID/SOURCE COMBINATION ETAADMIN/0A150850 NOT VALID

    2015.10.05.10:20:00.214   ERROR DBS3_test - Unable to authenticate to CN=etaadmin,host=dsb3_im: ACF01032 LOGONID/SOURCE COMBINATION ETAADMIN/0A150850 NOT VALID

    2015.10.05.10:20:00.214   ERROR DBS3_test - Error searching user defined field information, rc=49, skipping

    2015.10.05.10:20:00.448   ERROR DBS3_test - Unable to authenticate to CN=etaadmin,host=dsb3_im: ACF01032 LOGONID/SOURCE COMBINATION ETAADMIN/0A150850 NOT VALID

    2015.10.05.10:20:00.448   ERROR DBS3_test - Unable to authenticate to CN=etaadmin,host=dsb3_im: ACF01032 LOGONID/SOURCE COMBINATION ETAADMIN/0A150850 NOT VALID

    2015.10.05.10:20:00.480   ERROR IM Provisioning Server - :ETA_E_0257<EXX>, Error listing CA ACF2 Rule Type objects: Unable to authenticate to CN=etaadmin,host=dsb3_im: ACF01032 LOGONID/SOURCE COMBINATION ETAADMIN/0A150850 NOT VALID (by User 'etaadmin' - TenantNotSet) [DETAIL] {ID=f74ab082-6949-4f61-88b7-23f454c1ddce}

    2015.10.05.10:20:00.495   ERROR IM Provisioning Server - :ETA_E_0024<EXX>, Object 'Rules' exploration failed: (objects added: 0, deleted: 0, updated: 0, unchanged: 1, failures: 1) (by User 'etaadmin' - TenantNotSet) {ID=f74ab082-6949-4f61-88b7-23f454c1ddce}

     

    Please let me know how to resolve this issue.

     

    Thanks,

    Pankaj Khatri



  • 2.  Re: We are unable to explorer/corelate CA ACF2 Endpoint, after Adding ACF2 End point when we are trying to Explore/Corelate and it gives error

    Posted 10-06-2015 04:22 AM

    Hi Pankaj

     

    This looks like the user you are using (etaadmin) does not have enough rights on the ACF2 machine.

    Please verify this with the ACF2 administrator.

    Please also tell which version of CA LDAP (on mainframe) that you use.

     

    When having problems with ACF2, a trace of the CA LDAP will often reveal the real cause.

    Have the ACF2 administrator to set debug on CA LDAP (F LDAPR15,SET,DEBUG,ANY) Replace LDAPR15 with correct name and look in the log file. Name of log file is located in slapd.conf (on ACF2) I think

     

    Cheers, Atle



  • 3.  Re: We are unable to explorer/corelate CA ACF2 Endpoint, after Adding ACF2 End point when we are trying to Explore/Corelate and it gives error

    Posted 10-07-2015 10:27 AM

    Hi,

    After creating the endpoint you have to go to the tab "Endpoint settings" and deselect the option "Use logged-in Administrator's credential".

    The connection will then use the one you configured instead of the user used to connect to the provsioning server (etaadmin)