Symantec Access Management

  • Private Community
 View Only

  • 1.  Unable to access Advanced Authentication console/page

    Posted Aug 30, 2022 01:14 AM
    Edited by Atifah Abdul Latif Aug 30, 2022 08:25 PM
    Hi,

    Really appreciate on any advise or help on below issue.

    Recently user upgrading windows security and java version. Unfortunately, after the upgrading activity the apache tomcat 8 and CA Strong Authentication Service stopped running. Plus, the advanced authentication console/site inaccessible and failure of radius authentication. User did rollback to the original JRE version (1.8.181) and able to restart both services (apache tomcat & CA Strong Authentication). However, the console still inaccessible and the radius authentication still not able to use.

    We did clarify the port and no issue, it is listening and established. When we check the arcotadmin logs. We notice below pattern

    2022-08-29 11:13:50,796 CST : [localhost-startStop-1] : INFO : framework.init.InitManager : [N/A] : [N/A] : [N/A] : [Arcot Admin Console] : [Admin Console] : [N/A] : Loading the database properties...
    2022-08-29 11:13:50,812 CST : [localhost-startStop-1] : FATAL : web.init.ArcotAdminInitServlet : [N/A] : [N/A] : [N/A] : [Arcot Admin Console] : [Admin Console] : [N/A] : Application initialization failed, com/arcot/crypto/api/AccessKey


  • 2.  RE: Unable to access Advanced Authentication console/page

    Broadcom Employee
    Posted Aug 30, 2022 09:51 AM
    Hi Atifah,

    Verify you have the ArcotAccessKeyProvider and arcot-crypto-util libraries are in the correct java location and that java location is set properly.

    Refer to this knowledge base article for resolution to this issue: https://knowledge.broadcom.com/external/article?articleId=41443

    Related product documentation: https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/advanced-authentication/9-1/installing/ca-risk-authentication-installation/how-to-deploy-ca-risk-authentication-on-distributed-system/prepare-the-application-server.html
    Original Message


  • 3.  RE: Unable to access Advanced Authentication console/page

    Posted Sep 13, 2022 05:17 AM
    Hi Warren,

    Thanks for the advise. I did follow the KB, but now user received authentication failed error.

    Here the file I have copied based on the KB and I do restart the server.

    I do check the connection between the application server and database server - established
    Did try clear the browser cache and try different browser - same error as above
    Did check arcotadmin log and couldn't found any error or any info to move forward.

    Appreciate your help.

    Thank you,
    Atifah

    Original Message


  • 4.  RE: Unable to access Advanced Authentication console/page

    Posted Sep 14, 2022 05:03 AM
    Hi All,

    Really appreciate any help to fix this.

    Thank you,
    Atifah
    Original Message


  • 5.  RE: Unable to access Advanced Authentication console/page

    Broadcom Employee
    Posted Sep 14, 2022 10:07 AM
    Thank you for the update.
    The screen shot you pasted is for Customapp which is part of the Adapter and that is not the Admin application, for admin application you have to use this url format.

    http<localhost>:<port>/arcotadmin/masteradminlogin.htm

    Default username - masteradmin
    Default Password -- master1234!

    -Namish
    Original Message


  • 6.  RE: Unable to access Advanced Authentication console/page

    Posted Sep 16, 2022 02:53 AM
    Hi Namish,

    Thank you for highlighting that. User able to access admin console from his computer. The only issue now, the custom application site not accessible with above error. Do you have any suggestion on this?

    Thank you,
    Atifah
    Original Message


  • 7.  RE: Unable to access Advanced Authentication console/page

    Broadcom Employee
    Posted Sep 16, 2022 09:58 AM
    Thank you for the update.
    The Custoampp not working issue can come because of following reasons, a case with the Broadcom support will help as logs will be needed to review but please review these things in your environment.

    1. Did you run the ArcotAFMWizard to create the profile and properties file for arcotafm.properties and arcotsm.properties?
    2. What is the profile you are using, what kind of flow is this?
    3. You should look at the customapp.log and arcotafm.log file to see what is happening, that will give you clue.

    Go through the above steps and that will provide you next steps to look into the problem.

    -Namish
    Original Message


  • 8.  RE: Unable to access Advanced Authentication console/page

    Posted Sep 19, 2022 08:32 AM
    Hi Namish,

    I'm still new to this tools. Appreciate if you assist me on how to clarify the details for number 1 and 2.

    Thank you,
    Atifah
    Original Message


  • 9.  RE: Unable to access Advanced Authentication console/page

    Broadcom Employee
    Posted Sep 20, 2022 11:16 AM
    Hi Atifah,

    Here is the documentation link which talks about how you can configure Adapter using the ArcotAFMWizard.

    https://techdocs.broadcom.com/us/en/symantec-security-software/identity-security/advanced-authentication/9-1/installing/ca-adapter-installation/performing-ca-adapter-configuration-using-the-wizard/configure-ca-adapter-using-the-wizard.html

    -Namish
    Original Message