000034373 - User unable to reset password on RSA Security Analytics User Interface

Document created by RSA Customer Support Employee on Nov 18, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000034373
Applies ToRSA Product Set: NetWitness Logs and Packets, Security Analytics
RSA Product/Service Type: User Interface
RSA Version/Condition: 10.6.1
Platform: CentOS
O/S Version: EL6
IssueOn the user interface, if the user account's password expires then the user is unable to change their password and the user account becomes locked. 
User-added image
The issue arose in version 10.6.1, previously (in versions 10.6.0.0 and below) the user would be prompted to enter their new password as per the below screenshot: 
User-added image
ResolutionThe issue has been permanently fixed in RSA Security Analytics version 10.6.2. 
 
WorkaroundTo fix the issue, follow the below steps: 

A. SSH to the SA Server and run the below commands: 

 
cd /var/lib/netwitness/uax/db
stop jettysrv
cp platform.h2.db platform.h2.db.backup.rsa
java -cp h2-1.2.147.jar org.h2.tools.Shell -url jdbc:h2:file:platform

B. In the SQL Prompt: 

 
select name, EXPIRED, LOCKED, EXPIRYDATE from users;
update users set EXPIRYDATE=NULL, EXPIRED=FALSE, LOCKED=FALSE;
select name, EXPIRED, LOCKED, EXPIRYDATE from users;
exit

C. Back to the SSH of the SA Server: 

 
start jettysrv

This workaround will reset all  the users configurations. In other words it will change the configuration for any user that has been set to expired or locked to false, allowing users to access the User Interface once again. 

Attachments

    Outcomes