Environment
Novell ZENworks 10 Configuration Management Authentication
ZENworks 10 Configuration Management with SP1 (10.1) Authentication
Situation
ERROR (from zenlgn.log): "ObtainAuthToken Failed: 0xC7FF0020 "
ERROR (from ats.log with debug setting):
WARN authtoksvc.SessionToken getSecureTokenUtilObj()- Exception caught, message = ATS_INSTALL_DIR\etc\keys\trusted-ats-jks-store (The system cannot find the path specified)
WARN authtoksvc.SessionToken Constructor()- Failed to obtain secure token util object
ERROR authtoksvc.Authenticate invoke()- Exception: java.lang.Exception: SessionToken.Constructor()- Failed to obtain secure token util object
WARN authtoksvc.SessionToken Constructor()- Failed to obtain secure token util object
ERROR authtoksvc.Authenticate invoke()- Exception: java.lang.Exception: SessionToken.Constructor()- Failed to obtain secure token util object
Resolution
Note that the log gives a file not found for: ATS_INSTALL_DIR\etc\keys\trusted-ats-jks-store
If the file:
%zenworks_home%\share\ats\catalinabase\webapps\CasaAuthTokenSvc\WEB-
INF\classes\casa_crypto.properties
contains references to:
ATS_INSTALL_DIR
instead of the literal path where the trusted-ats-jks-store file is located then the casa will fail to authenticate users.
Make a backup of
%zenworks_home%\share\ats\catalinabase\webapps\CasaAuthTokenSvc\WEB-
INF\classes\casa_crypto.properties
Modify casa_crypto.properties to point to the actual location of trusted-ats-jks-store.
Note that the syntax of the path uses double slashes (use the other entries as reference) example:
C://Program Files//Novell//ZENworks//share//ats//etc//keys//trusted-ats-jks-store
Additional Information
0xC7FF0020 in zenlgn.log indicates a serverside error. See Debugging KB 3418069 for more information.
Logins can fail for other reasons, this TID is specific to a problem that occurs if either
- The SystemUpdate process failed to restore the copy of casa_crypto.properties (see system update log for details)
or - The CasaAuthTokenSvc directory in share\ats\catalinabase\webapps was deleted and the CasaAuthTokenSvc.war re-expanded.