Environment
Novell Access Management 3 Linux Access Gateway
Novell Access Management 3 Access Administration
Novell Access Management 3 Linux Novell Identity Server
Situation
Access Manager setup running an Administration COnsole server and Identity server
on the same SLES10 server, and a Linux Access Gateway setup on a seperate machine.
Everything was working fine over SSL - users could authenticate and access protected
resources that had policies applied to it..
However, when the non-secure port on the embedded service provider proxy service was
changed e.g. from 80 to 8008, the Administration Console would report an update showing
all was ok. Any changes to the Access Gateway configuration from this point on that
gets applied will result in the UI reporting a pending state forever ... looking closely
at the state of the proxy services (/etc/init.d/novell-vmc status) at this point will
show that many of the services are no longer running. This is an indication that the
server has crashed and that the Linux Access Gateway health status is 'not reporting'
in the UI.
Resolution
This issue has been address in Access Manager 3 SP1 release
Candidate 1 (3.0.1-171) and beyond.
To work around the issue one can also
- copy over the config.xml file from /var/novell/cfgdb/vcdn to /var/novell/cfgdb/.current, and then
- backout of the last pending request by going to the 'Commands' field on the main Proxy Configuration page of iManager and deleting the last entry in there
To work around the issue one can also
- copy over the config.xml file from /var/novell/cfgdb/vcdn to /var/novell/cfgdb/.current, and then
- backout of the last pending request by going to the 'Commands' field on the main Proxy Configuration page of iManager and deleting the last entry in there