000034159 - RSA Authentication Manager 8.2 fails to be applied to an RSA Authentication Manager 8.1 Service Pack 1 replica instance

Document created by RSA Customer Support Employee on Dec 5, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000034159
Applies ToRSA Product Set:  SecurID
RSA Product/Service Type:  RSA Authentication Manager
RSA Version/Condition:  8.1 Service Pack 1
IssueThe /opt/rsa/am/server/logs/update-<build_version>->build_number>-<timestamp>.log (e. g., /opt/rsa/am/server//logs/update-8.2.0.0.0-build1373693-20161029110305.log) file reports:
16054  2016-10-06 17:45:37,170 INFO: The count value of the property is : ERROR: ld.so: object '/lib/libreadline.so.5' from LD_PRELOAD cannot be preloaded: ignored.1
16059  2016-10-06 17:45:37,175 INFO: Run the script to find out if strict TLS mode is enble or not
16476  2016-10-06 17:45:37,592 INFO: The out value is : NONE
16476  2016-10-06 17:45:37,592 INFO: TLSv1.2 is not enable
16476  2016-10-06 17:45:37,592 INFO: Updated the db values as : SSLv3,TLSv1,TLSv1.1,TLSv1.2
16478  2016-10-06 17:45:37,594 INFO: Executing Insert values.  Log output will be found here: /opt/rsa/am/install_logs/dbscripts/Insert values-20161006174537.log
16479  2016-10-06 17:45:37,595 INFO: Executing /opt/rsa/am/pgsql/bin/psql
Exception in thread "Main Thread" : exec returned: 1
 at org.apache.tools.ant.taskdefs.ExecTask.runExecute(ExecTask.java:646)
 at org.apache.tools.ant.taskdefs.ExecTask.runExec(ExecTask.java:672)
 at org.apache.tools.ant.taskdefs.ExecTask.execute(ExecTask.java:498)
 at org.apache.tools.ant.UnknownElement.execute(UnknownElement.java:291)
 at org.apache.tools.ant.dispatch.DispatchUtils.execute(DispatchUtils.java:106)
 at Utils.exec(Utils.groovy:328)
 at Utils$exec$0.call(Unknown Source)
 at DBRefresh.executePsqlCommand(DBRefresh.groovy:294)
 at DBRefresh$executePsqlCommand.call(Unknown Source)

CauseThe 32-bit libreadline causes the database to fail.
Resolution
  1. The RSA Authentication Manager 8.2 software update file is called rsa-am-update-8.2.0.0.0.zip and has a MD5 signature of c1114890b8c1f9b9493dff4425e59c0c.  FIrst check the MD5 signature of the RSA Authentication Manager 8.2 software update file that has been downloaded to confirm it matches the value listed here.
  2. Check for the presence of /lib/libreadline.so.5 library file that is mentioned in the software update log file on the replica instance that is being updated.  To do this,
    1. SSH to the replica instance using the rsaadmin account.
    2. Use the command cd /lib to navigate to the lib directory.
    3. Enter the command file libreadline* to check for the presence of the library.  The expected output is shown here:
rsaadmin@app81r:/lib> cd /lib ; file libreadline*
libreadline*: ERROR: cannot open `libreadline*' (No such file or directory)
rsaadmin@app81r:/lib

  1. If the message "ELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, stripped" displays, complete steps 3 through 6 below to resolve this issue.
rsaadmin@replica:/lib> file libreadline*
libreadline.so.5: symbolic link to 'libreadline.so.5.2'
libreadline.so.5.w: ELF 32-bit LSB shared object, Intel 80386, version 1 (SYSV), dynamically linked, stripped

  1. Remove the symbolic link to libreadline.so.5.2 in the /lib directory.
  2. Move the 32-bit library file libreadline.so.5.w to another directory, such as /tmp.
  3. From /lib, check that the symbolic link and the library file no longer appear using the command file libreadline*.
  4. Apply the RSA Authentication Manager 8.2 software update to the replica instance.

Attachments

    Outcomes