000015810 - Authentication Manager 7.1 Radius fails to start after uninstalling 6.1

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000015810
Applies ToAuthentication Manager 7.1
Microsoft Windows 2003 Server
Authentication Manager 6.1 with radius
Uninstalled Authentication Manager 6.1 radius
IssueAuthentication Manager 7.1 Radius fails to start after uninstalling 6.1
7.1 Radius fails to start or starts and immediately shuts down
Error in Radius logs, "SecurID authentication method disabled because 'sdconf.rec'
file not present"
Error in Radius logs,"DCF system failed to start"
Error in Radius logs,"failed to start Radius Server"
radius problems after upgrade
CauseThe Authentication Manager 6.1 Radius uninstall is removing the sdconf.rec file  and Authenticaiton Manager 7.1 Radius registry entries.
Resolution

Follow the steps below to fix the issue.

For the Primary:

1. Go to control panel->Add/Remove programs. Click on RSA Radius Server 7.1. Click on Change
button.
2. On the dialog that opens, choose the 'repair' radio button. And follow
through rest of the dialog boxes.
3. Once the repair is finished, generate an sdconf.rec from Security Console
access->Access->Authentication agents->generate configuration files, download
the file, unzip it and copy the sdconf.rec to windows/system32 and
<install-home>/radius/service directories
4. Start the radius services.

For Replicas:

1. Go to control panel->Add/Remove programs. Click on RSA Radius Server 7.1. Click on Change
button.
2. On the dialog that opens, choose the 'repair' radio button. And follow
through rest of the dialog boxes.
3. Once the repair is finished, copy the same sdconf.rec that was generated
from Primary security console and copy the sdconf.rec to windows/system32 and
<install-home>/radius/service directories.
4. Start the radius services.
5. Go to the Security Console access->Radius->Radius Servers. Click on 'Force
Replication to all' button. Make sure that 'Replication successful' message is
received. (if replica radius replication is not enabled, go to radius servers,
click the drop down menu on the right side of the replica radius server and
select 'edit'. Check the checkbox which says 'Enable the server for replication
with the primary RADIUS Server'. Then click on save.
6. Check the Replica Radius Server details. Click the drop down menu on
the right side of the replica radius server and select 'view'. Under 'Radius
Server Status' block, the replication status should be 'up-to-date'.

Legacy Article IDa41772

Attachments

    Outcomes