Symantec Access Management

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------

Hi Ravi,

Make sure that you have symlink between /dev/random and /dev/urandom,
or that the system runs the rngd as deamon.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-08-2020 09:55 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------

Thanks Patrick for the suggestion !!

I tried below command to increase the entropy still i am getting the same logs and policy server is not starting properly.

rngd -r /dev/urandom -o /dev/random -b

Please let me know if this is the right way to do.
Original Message:
Sent: 01-09-2020 02:27 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

Make sure that you have symlink between /dev/random and /dev/urandom,
or that the system runs the rngd as deamon.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-08-2020 09:55 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------

Hi Ravi,

This is the command to run. Insure that the rngd service has started
properly and runs in memory after launching the command.

The other problem that will cause this will be that your Policy Store
is not properly indexed.

You might check the traces of the Policy Store instances for error
about this.

What is your Policy Server and OS versions ? What is the Policy Store
vendor ?

Best Regards,
Patrick
Original Message:
Sent: 01-09-2020 09:04 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Thanks Patrick for the suggestion !!

I tried below command to increase the entropy still i am getting the same logs and policy server is not starting properly.

rngd -r /dev/urandom -o /dev/random -b

Please let me know if this is the right way to do.
Original Message:
Sent: 01-09-2020 02:27 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

Make sure that you have symlink between /dev/random and /dev/urandom,
or that the system runs the rngd as deamon.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-08-2020 09:55 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------

Hi Patrick,

rngd has been started and running in the system. 

Regarding the policy store indexing, How can I check that ? as smconsole is showing successful connection with the policy store, key store and session store.

Also, There is nothing logged in the policy store trace.

Below are the policy store and server versions:

Policy server :
Version - 12.8 sp2
OS- OEL

Policy store vendor is CA Directory.

------------------------------
Regards,
Ravi
------------------------------

Original Message:
Sent: 01-10-2020 02:57 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

This is the command to run. Insure that the rngd service has started
properly and runs in memory after launching the command.

The other problem that will cause this will be that your Policy Store
is not properly indexed.

You might check the traces of the Policy Store instances for error
about this.

What is your Policy Server and OS versions ? What is the Policy Store
vendor ?

Best Regards,
Patrick
Original Message:
Sent: 01-09-2020 09:04 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Thanks Patrick for the suggestion !!

I tried below command to increase the entropy still i am getting the same logs and policy server is not starting properly.

rngd -r /dev/urandom -o /dev/random -b

Please let me know if this is the right way to do.
Original Message:
Sent: 01-09-2020 02:27 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

Make sure that you have symlink between /dev/random and /dev/urandom,
or that the system runs the rngd as deamon.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-08-2020 09:55 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------

Hi Ravi,

You can check if there are index problem or other in your CA Directory
Policy Store by looking at the CA Directory Policy Store logs and
traces. I'll suggest you to start the Policy Server, write down the
time you start it, and check in the CA Directory Policy Store logs and
traces what happens.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-16-2020 06:53 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi Patrick,

rngd has been started and running in the system.

Regarding the policy store indexing, How can I check that ? as smconsole is showing successful connection with the policy store, key store and session store.

Also, There is nothing logged in the policy store trace.

Below are the policy store and server versions:

Policy server :
Version - 12.8 sp2
OS- OEL

Policy store vendor is CA Directory.

------------------------------
Regards,
Ravi

Original Message:
Sent: 01-10-2020 02:57 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

This is the command to run. Insure that the rngd service has started
properly and runs in memory after launching the command.

The other problem that will cause this will be that your Policy Store
is not properly indexed.

You might check the traces of the Policy Store instances for error
about this.

What is your Policy Server and OS versions ? What is the Policy Store
vendor ?

Best Regards,
Patrick
Original Message:
Sent: 01-09-2020 09:04 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Thanks Patrick for the suggestion !!

I tried below command to increase the entropy still i am getting the same logs and policy server is not starting properly.

rngd -r /dev/urandom -o /dev/random -b

Please let me know if this is the right way to do.
Original Message:
Sent: 01-09-2020 02:27 AM
From: Patrick Dussault
Subject: Problem with policy server start up

Hi Ravi,

Make sure that you have symlink between /dev/random and /dev/urandom,
or that the system runs the rngd as deamon.

I hope this helps,

Best Regards,
Patrick
Original Message:
Sent: 01-08-2020 09:55 AM
From: Ravi Kavidayal
Subject: Problem with policy server start up

Hi All,

We have recently installed policy server 128 SP2 in one of our server. Once started the policy server, we are getting below message after a while:

 bash-4.1$ ./start-all
Policy Server did not start properly. Please check the logs for more details.

Also no error logged in the smps.log. The last message we could see in our log is:

[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:404][INFO][sm-Server-02800] Preloading policy store cache
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:417][INFO][sm-Server-02860] BulkFetch policy store
[22364/140643332728608][Wed Jan 08 2020 14:14:49][SmObjCache.cpp:420][INFO][sm-Server-02810] Precaching system configuration objects

we did not get any update after that.

smtracedefault.log

[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]
[01/08/2020][14:14:56.698][14:14:56][22364][140643332728608][SmObjCache.cpp:779][CSmObjCache::Lookup][][][][][][][][][][][Look up a cached object.][][][][][][][]

------------------------------
Ravi
------------------------------