Unable to login console , show error have you run besadmin to create the singing key on the Server

1

Please help me to resolve the issue.

2

Did you run the admin tool from the server? I think that should resolve the issue for you.

3

This might also happen if the Root Server service is not able to connect and authenticate with the database. I’d recommend checking the besrelay.log (by default in ‘C:\Program Files (x86)\BigFix Enterprise\BES Server\BESRelay.log’) for more information.

4

Hi sir,

You are right .I just explain from beginning.my console was working fine but when I registered new client on Windows machine.these client were not reporting to console.so I raise pmr with ibm.During the troubleshooting I run the command resignsecuritydata and rotateserversigningkey.after that I am not able to login console.

5

Could you list the steps and commands that you ran?

6

Trail mail of ibm.

I’d like to summarize all the investigation we have done:

  1. First you met the problem:
    16:12:42 +0530 - actionsite (http://172.16.65.21:52311/cgi-bin/bfgather.exe/actionsite)
    FAILED to Synchronize - IBM Endpoint Manager could not verify the authenticity of the site content.

Then I guided you to do as the technote http://www-01.ibm.com/support/docview.wss?uid=swg21506210<Error: FAILED to Synchronize - BigFix could not verify the authenticity of the site content.>

  1. However, while you run the third step as the command below, the error “19NoMatchingRecipient” occurred.

./BESAdmin.sh -rotateserversigningkey
-sitePvkLocation=<path+license.pvk>
-sitePvkPassword=

  1. Then I guided you to do server backup and follow the technote http://www-01.ibm.com/support/docview.wss?uid=swg21634777

  2. Asked customer to do server backup including database back
    2)Then run the following steps

  1. db2 update LDAP_Settings set EncryptedPassword = NULL (this
    statement
    deletes the EncryptedPassword column of the LDAP_Settings table,
    BFEnterprise Database )
  2. Open a command prompt and cd to the BES Server directory
    (/opt/BESServer/bin).
  3. Run ./BESAdmin -resignSecurityData
  4. Log in as local MO.
  5. Go to the LDAP Directories tree item.
  6. Edit each LDAP Directory with the appropriate password.

  1. However, the following error showed when you run ./BESAdmin.sh -resignSecurityData

  2. Then I guided you to run the command to handle an inconsistency between the keys stored in the database and those stored on the filesystem.
    ./BESAdmin.sh -repair -sitePvkLocation=<path+license.pvk> [ -sitePvkPassword= ]

  3. After that, re-run the ./BESAdmin.sh -resignSecurityData but still met the error as below

7

I have not experience with a linux instance of BigFix. But, did you restart the services?

8

Yes, I have restart besserver service

9

My issue resolved after the Besadmin.sh - repair command

1 Like