Error Cam-crp-1117
Contents |
CA Technote (troubleshooting) Problem(Abstract) Unable to save Cognos Configuration on Framework Manager. Symptom [Cryptography] 1. [ ERROR ] CAM-CRP-1132 An error occurred while attempting to request a certificate cam-crp-1098 unable to find the common symmetric key with alias from the Certificate Authority service. The Certificate Authority service returned the following error: cognos unable to find the common symmetric key with alias CAM-CRP-1259 Unable to authorize a Certificate Authority Service certificate request. The client computer's CA password may not match the cam-crp-1064 server's CA password. Cause The Certificate Authority service password on the Framework Manager client machine is different than the one set on the Content Manager server. Resolving the problem Set the same Certificate cognos cryptographic keys Authority service password on the Framework Manager client machine with what is set on the Content Manager server. Steps:Solution 1: 1. In Cognos Configuration, go to Security, Cryptography, Cognos. 2. On the right pane, set the value for Password under the Certificate Authority settings. The password field on the Framework Manager computer needs to be the same as the password field you have set on the
Cognos Cryptographic Keys Expire
Content Manager server. Solution 2: Reset a Property to the Default Value (Reset default value for Server and Framework Cognos Configuration). You can reset to the default values all the property values for a group or component, or only an individual property value. Steps 1. Start Cognos Configuration. 2. Choose what values to reset: � To reset all the property values for one group or component, in the Explorer window, click the group or component. � To reset the value of one property, in the Properties window, click the property. 3. From the Edit menu, click Reset to Default. Tip: If you reset one or more property values while the Cognos service is running, you must restart the service before the changes are applied to your computer. Cross Reference information Segment Product Component Platform Version Edition Business Analytics Cognos ReportNet ReportNet Historical Number 1029936 Document information More support for: Cognos 8 Business Intelligence Framework Manager Software version: 1.1, 8.1, 8.2 Operating system(s): Windows Reference #: 1341589 Modified date: 2008-05-29 Site availability Site assistance Contact and feedback Need support? Submit feedback to IBM Support 1-800-IBM-7378 (USA) Directory of worldwide contacts Contact Privacy Terms of use Accessibility
(troubleshooting) Problem(Abstract) Attempting to connect to the Cognos Business Intelligence Gateway in a browser, error "The Cognos gateway is unable to connect to the Cognos BI server. The server may be unavailable, or the gateway man not be correctly configured." Symptom The Cognos gateway is unable to connect to the Cognos BI server. The server may be unavailable, or the gateway man not be correctly configured. Cause This behavior may be due to expired Cognos keystores. By default, the http://www-01.ibm.com/support/docview.wss?uid=swg21341589 cryptographic keys are valid for 365 days. It is set in Cognos Configuration: Local Configuration->Security->Cryptography. See Common symmetric key lifetime in days value. Each time you open Cognos configuration and click the save button, it resets the clock on your 365 days. Therefore, if you installed the software and didn't save the configuration for 365 days, they would expire and http://www-01.ibm.com/support/docview.wss?uid=swg21341113 you'd need to manually regenerate them. You must restart the services every so often to ensure the new keys are actually being used. If you think you won't be opening and saving your configuration at any point in the next year or two, you can change the expiration date to 8 years and re-encrypt everything. Diagnosing the problem Originally it was thought that when you check the timestamp of your keystores (cognos_root_install/configuration/[csk] [signkeypair] [encryptkeypair]), and if these are older than one year, recycle your keys. However, this timestamp does not reflect the renewal date, but rather the create/modify date of the file itself. Instead, use ikeyman to open certificates and view the actual expiry date as follows: -Launch ikeyman.exe as administrator (Program Files\cognos\bin\jre\6.0\bin\ikeyman.exe) -Click "Open", and select key database type "PKCS12" -Go to the Cognos\configuration directory, then to the signkeypair -At the bottom click "All files" and then select "jCAKEYSTORE" It will open and the valid range should be visible. Resolving the problem Steps: Recycle your keys in a distributed Installation: - Stop all servers in the environment. Given, cr
and session length News: Stay connected throught Twitter - Avnet Services, Twitter - Avnet Academy, LinkedIn, Facebook, Google+ and YouTube.Check out the latest IBM Cognos tips and tricks in the BSP Chronicles. Join http://www.cognoise.com/index.php?topic=16431.0 our Mailing List. Home Help Search Calendar Login http://www.cogknowhow.com/index.php/library/54-cognos-access-manager-crypto-errorcodes Register COGNOiSe.com - The IBM Cognos Community » IBM Cognos 10 Platform » Upgrading to Cognos 10 » Cognos 10 Cryptographics issue « previous next » Print Pages: [1] Author Topic: Cognos 10 Cryptographics issue (Read 5992 times) Jon Webb Full Member Join Date: Mar 2011 Posts: 23 Forum Citizenship: +1/-0 BI Specialist.. getting to grips with EP unable to Cognos 10 Cryptographics issue « on: 21 Jul 2011 09:22:45 am » Hi all,I'm setting up a distributed installation of Cognos 10.1 BI across 3 servers. Server A has the BI server gateway/content manager installed.Server B has the BI Server application tier installed.Server C has the BI Server application tier installed.Servers A and B have been set up, installed upon, configured, and start successfully.. and I have a working C10 system.Server C unable to find fails when I try to test the configuration on the step 'Generating Cryptographic Information', even though it's basically identically set up to server B. The error message is as per below[ ERROR ] CAM-CRP-1110 Unable to save the contents of the keystore to 'D:/Program Files/ibm/cognos/c10/configuration/signkeypair\jCAKeystore'. Reason: java.security.KeyStoreException: There is already a certificate with the name ca.So obviously looks like a java error but I'm stuck - does anyone have any ideas? All these servers have been freshly created with Windows 2003 SP2 for this installation so there shouldn't be any strange old software hanging around.Thanks in advance,Jon Logged SomeClown Statesman Join Date: Mar 2007 Posts: 381 Forum Citizenship: +20/-0 Re: Cognos 10 Cryptographics issue « Reply #1 on: 22 Jul 2011 07:04:53 am » Sometimes the following steps have worked for me when I've encountered this error:In the c10\configuration folder, delete folders:cskencryptkeypairsigendkeypairIn Cognos configuration, re-enter the id/passwords for any accounts and database connectionsTest again Logged Jon Webb Full Member Join Date: Mar 2011 Posts: 23 Forum Citizenship: +1/-0 BI Specialist.. getting to grips with EP Re: Cognos 10 Cryptographics issue « Reply #2 on: 26 Jul 2011 08:31:04 am » Hi - thanks for this. I had to stop services on all my machines, delete all the encryptkeypair / signkeypair data, and then restart fr
the Author LoginRegisterForgot your Username?Forgot your password? Cognos Access Manager Crypto Errorcodes Written by Site Admin Wednesday, 06 May 2009 13:10 Cognos Access Manager (CAM) Crypto errorcodes in version 8.3CAMCRPCAM-CRP-0000;No error. CAM-CRP-0001;The XML document initializeDocument is not provided. CAM-CRP-0002;The XML document initializeDocument is invalid. Unable to find the root element '