Error: 'Invalid username/password or domain' when trying to to authenticate against an AS/400 server (NETIQKB29851)

  • Document ID:7729851
  • Creation Date:02-Feb-2007
  • Modified Date:03-Jan-2008
    • Micro Focus Products:
      Security Solutions for iSeries

Resolution

fact
VigilEnt User Manager / Password Management 1.0

fact
VigilEnt User Manager / Password Management 1.0 SP1

fact
VigilEnt User Manager / Password Management 1.0 SP2a

fact
VigilEnt Password Manager 2.0

symptom
Error: 'Invalid username/password or domain' when trying to to authenticate against an AS/400 server with VigilEnt Password Manager.

symptom

A user cannot log in to the User Password Self Service site by authenticating against an AS/400 server, even though all VigilEnt Security Manager and VigilEnt Password Manager tasks run successfully against the server.  In addition, the job output from the AS400 machine shows the following:

Error negotiating a secure connection. SSL_Handshake returned -1
PSCL01B: Not licensed for function::GTVRFYPWD                  
PSCL01B: Not licensed for function::GTVRFYPWD                  
PSCL01B: Not licensed for function::GTVRFYPWD                  
Error negotiating a secure connection. SSL_Handshake returned -1
Error negotiating a secure connection. SSL_Handshake returned -1



cause
The VigilEnt Security Agent for iSeries (VSAi) that is running on the server is not licensed to perform VigilEnt Password Manager commands.

fix

To resolve this issue, contact you NetIQ sales representative to obtain the VigilEnt User Manager / Password Management '(VUM) / (VPM)' Agent' license and apply the license to your AS400 server.

To verify whether your current license type for VUM (VPM) is valid, perform the following steps:

1.  Log on to the AS/400 machine.

2.  Type PSMenu at the command line.

3.  Select Option 80.  If the machine is properly licensed for use with VigilEnt Password Manager, your screen will appear similar to the following:

PSDF01               Purchase and Demo Screen            07:42:26  7/08/03     
                                                                                
    System serial number and name:              XX-XXXXX    MACHINE              
    Type/model/processor feature:                   9406    S20      2161      
    Processor group and release:                     P05    V5R1M0             
    Number of User Profiles on this machine:         151                       
                                                                               
 Valid   Product          Valid Dates       Users    Serial#    Model    .
  Purchased
   Y  PSAudit                                10000  103V1XM S20-2161  2002-07-26
   Y  PSSecure                               10000  103V1XM S20-2161  2002-07-26
   Y  PSDetect                               10000  103V1XM S20-2161  2002-07-26
   Y  PSPwdMgr-basic                         10000  103V1XM S20-2161  2002-07-26
   Y  SAM JDEdwards                          10000  103V1XM S20-2161  2002-07-26
   Y  Ops Nav                                10000  103V1XM S20-2161  2002-07-26
   Y  VUM (or VPM) Agent                     10000  103V1XM S20-2161  2002-07-26
   Y  VLA Agent                              10000  103V1XM S20-2161  2002-07-26
                                                                               
                                                                               
    Codes:                                                                     
                                                                            &.
nbsp;  
                                                                               
      ENTER to Update   F3 to Exit

.


Additional Information

Formerly known as NETIQKB29851