Symantec Access Management

  • Private Community
 View Only

  • 1.  SmKeyTool is not accessible

    Posted Dec 10, 2019 11:26 PM
    Hi All, 

    SmKeytool is not assessable in the linux based policy server. 

    Error: Could not find or load main class com.netegrity.smkeydatabase.db.SMKeytool

     

    When i am trying to get the metadata for the idp, i couldn't able to run the ./smkeytool.sh which throw error as shown above. 

     

    i have tried running ca_ps_env.sh then i can see same issue. 



    ------------------------------
    Sasikumar Chenniyappan
    ------------------------------


  • 2.  RE: SmKeyTool is not accessible

    Broadcom Employee
    Posted Dec 11, 2019 02:35 AM
    Hi Sasikumar,

    You can get such error if you have on the box also Web Agents and
    other SiteMinder components running.

    What's your Policy Server version ?
    What's your Policy Server OS version ?
    What's your JVM version ?

    Best Regards,
    Patrick
    Original Message


  • 3.  RE: SmKeyTool is not accessible

    Posted Dec 11, 2019 05:53 PM
    Hi Patrick, 

    thank you for your response. 

    Policy server version : FullVersion=12.80.200.1992
    OS: Red Hat Enterprise Linux Server release 7.6 (Maipo)
    JVM : java version "1.8.0_181"

    policy server is running in standalone instance and not sharing with any other components.
    Original Message


  • 4.  RE: SmKeyTool is not accessible
    Best Answer

    Broadcom Employee
    Posted Dec 12, 2019 02:32 AM
    Hi Sasikumar and Terence,

    You should note that the smkeytool.sh is to manage the certificates
    from the certificates store.

    I've just tried in my lab, I've reproduced the issue and I've fixed it :

    I reproduced the issue that way :

    [ps.training.com] root :: 08:28:36 : /opt/CA/siteminder/bin $ ./smkeytool.sh
    Error: Could not find or load main class com.netegrity.smkeydatabase.db.SMKeytool

    and here are the steps to fix it, you need to have the environment
    variables set to get the command to run properly :

    [ps.training.com] root :: 08:28:44 : /opt/CA/siteminder/bin $ cd ..
    [ps.training.com] root :: 08:29:13 : /opt/CA/siteminder $ source ca_ps_env.ksh
    [ps.training.com] root :: 08:23:48 : /opt/CA/siteminder $ Version
    [Version - Version 12.8.0200.1992]

    [ps.training.com] root :: 08:23:51 : /opt/CA/siteminder $ smkeytool.sh -listCerts

    [...]

    Alias Name: jsmithca
    Type: CertificateAuthorityEntry
    Subject: CN=jsmith,OU=Support,O=Broadcom,L=Barcelona,ST=Barcelona,C=ES
    Issuer: CN=jsmith,OU=Support,O=Broadcom,L=Barcelona,ST=Barcelona,C=ES
    Serial Number: 00C4CDAEA1A25AF6C4
    Valid from: Fri May 17 12:08:44 CEST 2019 until: Mon May 14 12:08:44 CEST 2029

    *****************************************************************************

    [...]

    *****************************************************************************

    Number of entries listed: 8.

    [ps.training.com] root :: 08:26:00 : /opt/CA/siteminder $ smkeytool.sh -help

    Certificate Data Store Management Tool!
    SMKeytool Usage:

    [...]

    Tell us if you need further precision,

    Best Regards,
    Patrick
    Original Message


  • 5.  RE: SmKeyTool is not accessible

    Posted Dec 15, 2019 09:19 PM
    Sure, let me try Patrick, thank you.
    Original Message


  • 6.  RE: SmKeyTool is not accessible

    Posted Dec 15, 2019 10:55 PM
    great that works !!!! thank you, its my blinder mistake.
    Original Message


  • 7.  RE: SmKeyTool is not accessible

    Posted Dec 11, 2019 07:20 PM
    Hi Patrick. It's  Terence from sprint. We are having the same issue in the 12.8 sp3 adminui  SmKeytool cannot be accessed in a Linux based adminui. It is there in 12.8 sp2 and previously. Using linux 7   .

    Best Regards
    Terence
    Original Message