AutoSys Workload Automation

  • Private Community
 View Only

  • 1.  autosys_secure

    Posted Jul 01, 2020 12:02 PM
    Hello all,  Just finished a new autosys r11.3.6 sp8  and trying to get autosys_secure to display all options ...   it did work once - now
    it wont give me options 1 to 4 

    CAUAJM_W_60045 Only an CA WAAE EDIT superuser has access to all options!

    Please select from the following options:
    [5] Manage users.
    [6] Get encrypted password.
    [0] Exit CA WAAE Security Utility.

    I have logged on as root  and su - autosys,  this happened to me ages ago and i cant remember how i fixed it 
    I'm using Native security any ideas ?

    thanks


  • 2.  RE: autosys_secure

    Posted Jul 01, 2020 03:25 PM

    I too had faced this issue. We had to run the commands to fix this.

     

    truncate table ujo_keymaster;

    update ujo_alamode set int_val=0 where type = 'JOB';

    update ujo_alamode set int_val=0 where type = 'EVT';

    delete from ujo_alamode where type = 'SEC';

    commit;

     

     

     




    Original Message


  • 3.  RE: autosys_secure

    Broadcom Employee
    Posted Jul 02, 2020 01:12 AM
    Hi Sandeep,

    Do not truncate the ujo_keymaster. Instead, run the following if you encounter this problem ever again. 

    delete from aedbadmin.ujo_keymaster where hostid = 'SECURITY'; 

    Ref: https://knowledge.broadcom.com/external/article/4114/access-denied-to-autosyssecure.html 

    Regards,
    Kishore Kumar Udathaneni


    Original Message


  • 4.  RE: autosys_secure

    Posted Jul 02, 2020 08:11 AM
    ​Thanks Kishore

    having problems now

    CAUAJM_E_10448 FATAL SECURITY ERROR: Tampering or corruption of the security-related database keys detected!
    CAUAJM_E_10449 Please contact CA WAAE technical support!

    thanks
    Original Message


  • 5.  RE: autosys_secure

    Broadcom Employee
    Posted Jul 02, 2020 09:42 AM
    Hi Matt,

    Is your env running in HA with 2 databases? If so you'd need to run it on both the DBs while the schedulers are down.
    Soon you execute the queries it would unlock the autosys_secure in native security mode. Add the user 'autosys' to the edit/exec list. Later you could configure it to use EEM.  

    Regards,
    Kishore Kumar Udathaneni
    CA Technologies
    Original Message


  • 6.  RE: autosys_secure
    Best Answer

    Posted Jul 02, 2020 04:38 PM
    "truncate table ujo_keymaster; " ??? No..... never safe to Truncate. 

    Delete only the relevant record instead. 

    delete from aedbadmin.ujo_keymaster where hostid = 'SECURITY';  (Oracle)

    delete from ujo_keymaster where hostid = 'SECURITY';  (Sybase/MS SQL) 

    Original Message


  • 7.  RE: autosys_secure

    Broadcom Employee
    Posted Jul 02, 2020 01:07 AM
    Hi Matt,

    Please follow the KB - 
    https://knowledge.broadcom.com/external/article/4114/access-denied-to-autosyssecure.html 

    Regards,
    Kishore Kumar Udathaneni
    Original Message