jleseberg
New Member.
975 views

Unable to save driver changesWe

We have an issue that has started appearing in the last 2-3 weeks. When attempting to start 3 separate drivers we receive the following error in the log:

Message: Code(-9184) Error retrieving application password: com.novell.nds.dhutil.DSErr: -1417 (0xfffffa77)

When we attempt to update the application password in iManager and apply the update the process fails and the following error is displayed in iManager:

Unable to write the driver configuration to the Identity Vault.
Error The following error occurred: com.novell.admin.common.exceptions.UniqueSPIException: Unknown meaning for error number -1417; Please call a Novell support provider

We are running eDirectory 8.8.8 Patch8 HF2, Identity Manager 4.5 Advanced Edition, and iManager 2.7.7.7 all on RHEL 6.9. The 3 drivers are JDBC drivers version 4.0.0.2. There are multiple other types of drivers in the same driverset that are running and not having any issues.

Any help with the problem would be apopreciated. Thank you.
Labels (1)
0 Likes
5 Replies
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Unable to save driver changesWe

The -14xx errors are NICI errors, so that's definitely unusual. Have you
done anything NICI-wise with this box in the last long time? Reinstalls,
backup/restore stuff of the NICI directory, etc.?

Also, I do not know how NICI isused (if at all) for the application or
Remote Loader (RL) passwords, but if you have a Universal Password (UP) it
is definitely involved, so I wonder if maybe you are lacking the default
DirXML Password UP policy defined at the DriverSet level, which typically
disables UP as I recall. If so, perhaps the errors is from the Driver
Object password for some reason (though that should not be used most of
the time as far as I know, at least until the RL or matching eDirectory
driver connects, if applicable).

Any unusual difference in the files within /var/opt/novell/nici or
/var/opt/novell/nici/0 (where '0' is the UID of the user running the
eDirectory instance)? Does this happen in test/dev/prod environments, or
on other IDM servers (if applicable)? Does it happen via Designer?

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
jleseberg
New Member.

Re: Unable to save driver changesWe

This is happening in our test environment on 3 drivers in one driverset on one server. All the other drivers in the driverset are starting and running with no issues. We also have a separate driverset that has drivers that run normally.

We have 4 servers in the replica ring, 01 is the master and 02-04 are read/write replicas. We recently had an issue with some of the read/write replicas so the quickest fix was to remove all 3 of the replicas from the master (server 01). The 3 servers were removed from the master replica using the ndsrepair -P -Ad command. After all the replicas were removed from the master we deleted the directory on the replica servers that contained the data. We then recreated the replicas on servers 02-04 using ndsmanage to add the tree back onto the replica servers.

I have looked at the nici files in the /var/opt/novell/nici and I do not see anything that looks out of the ordinary.

Thank you for your help.
0 Likes
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Unable to save driver changesWe

What about the test with Designer?

Have you tried setting the passwords to something really dull and boring,
just to make sure it is not a character-handling issue due to special
characters in the password? If you do have special character, which one(s)?

Have you tried iManager Workstation after making sure that NICI is
installed on your workstation (it probably is)?

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
jleseberg
New Member.

Re: Unable to save driver changesWe

I tested by attempting to set the password to a very simple password to make sure it was not a special character issue. I received the same "Unable to write the driver configuration to the Identity Vault. The following error occurred: com.novell.admin.common.exceptions.UniqueSPIExcept ion: Unknown meaning for error number -1417; Please call a Novell support provider" error in iManager.

I also tested with iManager workstation (I verified that NICI was installed) and received the same error.

I was able to successfully update the password for the 3 drivers by using Designer and pushing the password to eDirectory.

Any ideas as to why I could update the passwords using Designer but not in iManager?

Thanks.
0 Likes
Knowledge Partner Knowledge Partner
Knowledge Partner

Re: Unable to save driver changesWe

Out of curiosity which version of NICI, and iManager Workstation, are on
your workstation?

I cannot explain iManager on the server NOT working, at least if you
really are on the versions you claim (eDir 8.8 SP8 and iManager 2.7 SP7)
since those only come with NICI 2.7 which should be pretty normal for
those versions, but feel free to verify all of those packages. On the
client side, perhaps NICI versions differ causing issues; it is believed
that NICI 3.x could break iManager 2.7, but NICI 3.x is part of eDirectory
9.x and iManager 3.x (and maybe Designer.... I have not checked lately).

Either way, thanks for sharing your results so far as they are interesting
and could help others.

--
Good luck.

If you find this post helpful and are logged into the web interface,
show your appreciation and click on the star below.

If you want to send me a private message, please let me know in the
forum as I do not use the web interface often.
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.