Error: 'Node verification failed' and 'Passcode accepted' when using RSA ACE/Agent for Netscape

3 years ago

Originally Published: 2001-02-07

Article Number

000053800

Applies To

iPlanet Web Server
RSA ACE/Agent 1.1 for Netscape

Issue

Error: "Node verification failed" and "Passcode accepted" when using RSA ACE/Agent for Netscape
When trying to authenticate via RSA ACE/Agent for Netscape/iPlanet, the passcode is accepted, but then the error "Node verification failed" appears in ACE/Server log

Cause

The permissions on the web server /var/ace/data directory are such that the Netscape administrator cannot write to it. ACE/Server receives a proper passcode but fails to place the node secret in /var/ace/data due to this permission problem. This further results in a securid error on the HTML page. The log monitor of the ACE/Server shows passcode accepted node verification failed.

Resolution

In order to properly send the node secret from the Master ACE/Server to the iPlanet Web Server or Netscape Enterprise Server, the /var/ace/data directory must be writable by the Netscape administrator. After the permissions have been changed and authenticated, check the /var/ace/data directory on the web server for the 'securid' file.

There are several ways to determine who is the Netscape Server administrator.

1. Look for the line 'user' under server preferences from a web browser:

   http://<servername>:<administration port>
   Click on the webserver name
   Click 'view server settings'
   Look at line which reads User: <name of netscape administrator>

2. View the contents of the magnus.conf file by doing the following:

   cd /opt/netscape/suitespot/https-<servername>/config
   cat magnus.conf |grep -i user

Don't see what you're looking for?

Related Articles

Trending Articles