000025806 - Unable to run sdadmin  sdlogmon  or Administration API as the file owner in RSA ACE/Server 5.2.1

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000025806
Applies ToRSA ACE/Server 5.2.1
UNIX (AIX, HP-UX, Solaris)
RSA ACE/Server is started as root and root is not the file owner
IssueUnable to run sdadmin, sdlogmon, or Administration API as the file owner in RSA ACE/Server 5.2.1
If the ACE/Server is started by the file owner, everything works fine
Error: "There is no connection to server database"
CausePermission changes made in RSA ACE/Server 5.2 allows only the user that starts the ACE/Server to read *lk files in the "path"/ace/data directory. When sdadmin is run by another user that cannot read the *lk file, it's interpreted as the server is not running.
ResolutionTo resolve this issue, contact RSA Security Customer Support and request hot fix ID 42990.

As a workaround, you can change the permissions on the _mprosrv file as follows:

cd "path"/ace/prog
chmod 4110 _mprosrv

Then stop and start ACE:

aceserver stop
sdconnect shutdown
sdconnect start
aceserver start
Legacy Article IDa21396