000024035 - Accessing the RSA Authentication Manager 7.x database

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000024035
Applies ToRSA Authentication Manager 7.0
RSA Authentication Manager 7.1
Oracle
SQL
IssueAccessing the RSA Authentication Manager 7.x database
CauseThere are some low level maintenance operations which will require access to the Oracle database which is used by Authentication Manager.  Many tools are available to access an Oracle database (DBVisualiser, SQL*Plus etc) but all will need connection details. 
Resolution

The following steps show how to obtain the basic details and create a local connection on the same machine. 

Important Note:  This solution does not cover network connections

Use the rsautil manage-secrets command to display the usernames and passwords in the system if the correct master password is supplied, this will display the Database System User ID and Password (highlighted in red below).  Note that the installation directory for RSA Authentication Manager is c:\authmgr in this example

C:\authmgr\utils> rsautil manage-secrets --action listall --master-password MYPASSWORD
Secrets stored in C:\authmgr\utils\etc\systemfields.properties.
Application Server Administrator User ID ...: admin_g8eeygx0
Application Server Administrator Password ..: SzzvufTaen
Command API Client User ID .................: CmdClient_merfk1qp
Command API Client User Password ...........: S4i91Ge8D9
com.rsa.db.crypto.seed .....................: 0Gai4XWreqrPTqqL48O8PSzn0Oa1y0v451qerGmXKLG0CfKeiTjLuOL1CTHOW0ujOX1mPX
Database Administrator User ID .............: rsa_dba_cfekw8ej
Database Administrator Password ............: nrienDe1rH
Database SNMP User ID ......................: dbsnmp
Database SNMP User Password ................: iiTSeWXLfL
Database Log Archiver User ID ..............: rsa_log_archiver
Database Log Archiver User Password ........: XmeP8mDjeP
Database System User ID ....................: sys
Database System User Password ..............: fvve14yKez
Database System Manager User ID ............: sysman
Database System Manager User Password ......: LeCzD4vmGX
Database System Administrator User ID ......: system
Database System Administrator User Password : Oe4ynDGffH
Database Connection User ID ................: rsa_user_vez9elzn
Database Connection User Password ..........: O45fbeC5Ku
com.rsa.identity.key .......................: y1We9reTXH
com.rsa.identity.store .....................: vniPeO9K8e
com.rsa.nodemanager.user ...................: rsa_nm_user_ntomjehg
com.rsa.nodemanager.user.password ..........: Pj1qXOefmC
com.rsa.pwd.auth.users .....................: user.1,user.2
Database Replication User ID ...............: RSA_STREAMS_ADMIN
Database Replication User Password .........: r8X9urefPy
com.rsa.root.key ...........................: P10Dbie0ue
com.rsa.root.store .........................: GL8iSefu1u
Root Certificate Private Key Password ......: P1eDbi80ue
Root Certificate Keystore File Password ....: GL8eSbfu1u
System Encryption Key ......................: <Binary Value>
System Encryption Key Unique ID ............: cd8e14d2cb33a8c0001f3869c9fa7041
user.1 .....................................: metis.csau.ap.rsa.net
user.2 .....................................: RadiusCmdClient_123
user.2.password ............................: password


Now review the tnsnames.ora file on this system, in this example the text file can be found at c:\authmgr\db\NETWORK\ADMIN\tnsnames.ora, again the required information is highlighted

# tnsnames.ora Network Configuration File: C:\authmgr\db\network\admin\tnsnames.ora
# Generated by Oracle configuration tools.

LISTENER_RBMBMLWV =
  (ADDRESS = (PROTOCOL = TCP)(HOST = metis.csau.ap.rsa.net)(PORT = 2334))


EXTPROC_CONNECTION_DATA =
  (DESCRIPTION =
    (ADDRESS_LIST =
      (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC0))
    )
    (CONNECT_DATA =
      (SID = PLSExtProc)
      (PRESENTATION = RO)
    )
  )

RBMBMLWV =
  (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = metis.csau.ap.rsa.net)(PORT = 2334))
    (CONNECT_DATA =
      (SERVER = DEDICATED)
      (SERVICE_NAME = rbmbmlwv.ims.rsa)
    )
  )


With this information we can now use the selected command to connect to the RSA Authentication Manager database (note that the services must be running)

 
C:\authmgr\db\BIN>sqlplus sys/fvve14yKez@RBMBMLWV as sysdba

SQL*Plus: Release 10.2.0.3.0 - Production on Tue Jan 15 08:38:55 2008

Copyright (c) 1982, 2006, Oracle.  All Rights Reserved.


Connected to:
Oracle Database 10g Enterprise Edition Release 10.2.0.3.0 - Production
With the OLAP and Data Mining options

SQL>


It is also possible to connect using the direct connection string, for example:

 

 
C:\authmgr\db\BIN>
sqlplus sys/fvve14yKez@ (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(HOST=metis.csau.ap.rsa.net)(PORT=2334))(CONNECT_DATA=(SERVER=DEDICATED)(SERVICE_NAME=rbmbmlwv.ims.rsa))) as sysdba

SQL*Plus: Release 10.2.0.3.0 - Production on Tue Jan 15 08:38:55 2008

Copyright (c) 1982, 2006, Oracle.  All Rights Reserved.


Connected to:
Oracle Database 10g Enterprise Edition Release 10.2.0.3.0 - Production
With the OLAP and Data Mining options

SQL>


For more information see the documentation on the DVD or online in RSA SecurCare Online:

 

RSA Authentication Manager 7.0 Release Notes

https://knowledge.rsasecurity.com/docs/rsa_securid/rsa_auth_mgr/70/rel_notes/index.html

 

RSA Authentication Manager 7.0 Administrator's Guide

https://knowledge.rsasecurity.com/docs/rsa_securid/rsa_auth_mgr/70/admin.pdf

 

RSA Authentication Manager 7.0 Getting Started

https://knowledge.rsasecurity.com/docs/rsa_securid/rsa_auth_mgr/70/getting_started.pdf

 

RSA Authentication Manager 7.0 for Installation Guide

https://knowledge.rsasecurity.com/docs/rsa_securid/rsa_auth_mgr/70/install.pdf

 

RSA Authentication Manager 7.0 Planning Guide

https://knowledge.rsasecurity.com/docs/rsa_securid/rsa_auth_mgr/70/planning.pdf

 

NotesWhen running on a unix platform, if you recieve the following error when attempting to execute sqlplus:

[root@rsa bin]# ./sqlplus sys/RAS8jrJBLX@YBYMMGIJ as sysdba
Error 6 initializing SQL*Plus
Message file sp1<lang>.msb not found
SP2-0750: You may need to set ORACLE_HOME to your Oracle software directory

It is also necessary to set the ORACLE_HOME environment variable before you can run sqlplus. ORACLE_HOME will be equal to $AM_HOME/db.

If you have selected the default installation path for AM 7.X, the path will be /usr/local/RSASecurity/RSAAuthenticationManager/db

in a shell:

ORACLE_HOME=/usr/local/RSASecurity/RSAAuthenticationManager/db
export ORACLE_HOME

This can be added as a permanent change by adding ORACLE_HOME to .profile or /etc/profile
Legacy Article IDa38347

Attachments

    Outcomes