|Applies To||RSA Product Set: Web Threat Detection|
RSA Product/Service Type: Administration UI
RSA Version/Condition: 220.127.116.11
O/S Version: Red Hat Enterprise Linux 6.x
Product Description: Web Fraud Detection
|Issue||The WTD administrator is not able to add a user in the administrative interface. The following error shows in /var/log/messages:|
Apr 27 09:56:41 testWTD51 uiserver: [info] 0 [UpdateUser]: DB failure on UPDATE of users table :
|Cause||An added feature to 18.104.22.168 encrypts the user password in the Annotation Database. In order to do this, the variable characters for the password and prevpassword need to be increased from 80 characters to 120 characters. This is handled by the rpm-postinstall.sh script that will call the updatedb.sh to complete that task. This process doesn’t always complete as part of the upgrade. The reason for this is unknown at this point, but we believe it is due to permissions issues at the time of the upgrade.|
When rpm-postinstall.sh runs, it will first change the pg_hba.conf to authentication method to “trust.” This should allow for a user to run the updatedb.sh script to upgrade the database. The updatedb.sh script then will check for and implement the resize the column size in the users table for password and prevpassword from 80 to 120 characters. After the resize of those columns the script will do many other updates to the database if needed.
|Resolution||Contact RSA support for information on how to manually change the column size in the PostgreSQL database.|
|Workaround||To fix this issue, we will need to have root SSH access to the server hosting AnnoDB. If we do not have root access then if we have the postres account credentials we may be able to make the change. |
# psql -p 7078 -d silvertail -U postgres
The password for the user is postgres and the default password is changeme.