000031945 - Unable to access RSA Identity Governance & Lifecycle 7.0 after changing the database user password

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support on Jul 28, 2018
Version 19Show Document
  • View in full screen mode

Article Content

Article Number000031945
Applies ToRSA Product Set: RSA Identity Governance & Lifecycle
RSA Product/Service Type: WildFly
RSA Version/Condition: 7.0
Platform: Linux
IssueAfter following the instructions on pages 154-155 of the RSA Identity Governance & Lifecycle version 7.0 Installation Guide Appendix C on Changing Database User Passwords and restarting RSA Identity Governance & Lifecycle, the User Interface shows an Initialization Status error similar to the example below:
 
Initialization Status
Unable to get the acmdb connection. Verify that the database is available and a connection to the avdb database can be made with the acmdb credentials
Please resolve the problem and restart the application server.

 


User-added image


In this case, the acmdb user password was being modified. The exact error depends on which database user password was being modified.
CauseWhen modifying the cleartext password as per Step 2 under Procedure, if the braces surrounding the password are included, they are considered part of the password.  For example,
User-added image
ResolutionThe solution is to follow the steps below for Changing Database User Passwords starting with Step 2 and remove the braces from the cleartext password. It is best to use the instructions below rather than the RSA Via Lifecycle and Governance Installation Guide V7.0, as the instructions below contain corrections to mistakes that are in the guide.
 

Changing Database User Passwords


Note: In this example the password for the database user ACMDB is being modified but these same instructions apply to the users AVUSER, AVDWUSER, PERFSTAT, and SYS as well.

  1. Login to sqlplus as sysdba and change the database user password in the database using the following SQL command syntax:


ALTER user ACMDB identified by <a_cleartext_password>;


  1. As the oracle user, edit /home/oracle/Aveksa_System.cfg and update the password property with the cleartext password you want to change for the database user. Remove the braces surrounding the password if they are not part of the password used in Step 1.  The cleartext password in Aveksa_System.cfg is encrypted in the next step.
  2. Login as the root user and encrypt the password: 


# cd /home/oracle/deploy
# ./generateLoginKey.sh acmdb


The command returns the encrypted password.


  1. Login as the oracle user. 
  2. Open /home/oracle/wildfly/standalone/configuration/aveksa-standalone-full.xml in a text  editor. 
  3. Update the security domain name under security subsystem with the encrypted password you want to change:


<module-option name="password" value=<encrypted-password>


  1. Restart RSA Identity Governance & Lifecycle.   This step is very important. Without the restart, the changes will not take effect.


acm start


Attachments

    Outcomes