000012127 - Configure Replica Radius fails with "Invalid primary RADIUS server's replication secret was provided" in RSA Authentication Manager

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000012127
Applies ToRSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 7.1, 8.x
IssueThe following error message is displayed:
There was a problem processing your request.
Invalid primary RADIUS server's replication secret was provided
Failed configuration command execution
com.rsa.installfwrk.config.exception.ConfigurationException: Failed configuration command execution
at com.rsa.installfwrk.config.ConfigEngine.execute(ConfigEngine.java:223)
at com.rsa.installfwrk.config.ConfigUtil.runConfig(ConfigUtil.java:53)
at com.rsa.installfwrk.config.ConfigUtil.main(ConfigUtil.java:35

Caused by: com.rsa.authmgr.radius.exception.RadiusSystemException: Unable to read RADIUS object -Could not create SSL Socket
CauseThe replica initiates a connection to the Primary at Port 7002 but there is a Firewall blocking the Primary response back to the replica.
If AM 8.1 SP1 backup fails with this error, need to restart the radius and radiusoc servcies
ResolutionOpen the following ports for Replication:

Port/Type Function

1812/TCP Open for SNMP and CCM/replication communication
1813/TCP Open for RADIUS administration, if RADIUS is installed
2334/TCP Open for Oracle communication
5500/UDP ? Open when RADIUS is installed ? Close when RADIUS is not installed
7002/TCP Open for the Authentication Manager adjudicator
7004/TCP Open for administration communication between the Authentication
Manager primary instance and replica instance when they are in different geographical locations.

NotesSee the installation guide on RSA Link for details here.
Legacy Article IDa54384