000031945 - Unable to access the RSA Via L&G UI after changing the database user password in version 7.0

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 10Show Document
  • View in full screen mode

Article Content

Article Number000031945
Applies ToRSA Product Set: RSA Via Life Cycle & Governance
RSA Product/Service Type: Wildfly
RSA Version/Condition: 7.0
Platform: Linux
After following the instructions on pages 154-155 of the RSA Via L&G 7.0 Installation Guide, Appendix C, "Changing Database User Passwords" and restarting Via L&G, the User Interface shows an Initialization Status error similar to the example below.
Initialization Status
Unable to get the acmdb connection. Verify that the database is available and a connection to the avdb database can be made with the acmdb credentials
Please resolve the problem and restart the application server.

User-added image

 In this case the 'acmdb' user password was being modified. The exact error depends on which database user password was being modified.
CauseWhen modifying the cleartext password as per Step 2 under 'Procedure', if the braces surrounding the password are included, they are considered part of the password.
User-added image
ResolutionThe solution is to follow the steps below for "Changing Database User Passwords" starting with Step 2 and remove the braces from the cleartext password. It is best to use the instructions below rather than the Installation Guide, as the instructions below contain corrections to mistakes that are in the guide (engineering ticket ACM-58971.) 
Changing Database User Passwords
NOTE: In this example the password for the database user 'ACMDB' is being modified but these same instructions apply to AVUSER, AVDWUSER, PERFSTAT, and SYS as well.
1. Login as user 'oracle' and change the database user password in the database using the following SQL command syntax:
alter user ACMDB identified by <a_cleartext_password>;

2. As user 'oracle', edit /home/oracle/Aveksa_System.cfg and update the password property with the cleartext password
you want to change for the database user. Remove the braces surrounding the password if they are not part of the password used in Step 1.
Note: The cleartext password in Aveksa_System.cfg is encrypted in the next step.
3. Login as the 'root' user and encrypt the password: 
# cd /home/oracle/deploy 
# ./generateLoginKey.sh acmdb

The command returns the encrypted password.
4. Login as user 'oracle', edit /home/oracle/wildfly/standalone/configuration/aveksa-standalone-full.xml, update
the security domain name under security subsystem with the encrypted password you want to
<module-option name="password" value=<encrypted-password>

5. Restart Via L&G.
This step is very important. Without this step, the changes will not take effect.