Blog Viewer

Tech Tip : CA Single Sign-On:: Policy Server : Failed updating KeyManagement object

By Ujwol posted 10-24-2016 12:31 AM

  

Issue

Smkeyimport fails to import the KeyManagement object even on the same policy server where the export was taken from.

Total Number of Objects read from input file: 5

Objects Successfully Created: 4

Objects Successfully Updated: 0

Objects Not Saved - Errors: 1

Objects Not Saved - Duplicates: 0

Objects Not Saved - Wrong Parent: 0

Objects Not Saved - Wrong Type: 0

Objects created and renamed - Name conflict with another object: 0

 

Diagnostic Messages

ERROR: Failed updating KeyManagement object 1a-fa347804-9d33-11d3-8025-006008aaae5b. Status: 'Unknown Failure'

Environment

Policy server : r12.0 and above Policy server OS : Any Policy store : Any

Cause

This happens when the "Enable Agent Key Generation" check box is disabled on the Policy server.

If the policy server is not configured to generate agent keys, smkeyimport will always fail to import the "KeyManagement" object.

EnableAgentKeyGeneration.png

 

Resolution

Check "Enable Agent Key Generation" check box on the Policy server management console of the Policy Server before performing smkeyimport.

You can disable this back once the smkeyimport is complete.

KeyGenerationEnabled.jpg