Unsolved
This post is more than 5 years old
40 Posts
0
588
April 3rd, 2008 10:00
Issue with security keys on AIX
We recently had batch accounts created for us on one of our AIX servers for running naviseccli. On those same servers while testing I was able to run the addusersecurity perfectly fine for my own account, but when I su over to the syembat(the emc batch account) and try to run the addusersecurity, I get the following:
naviseccli -addusersecurity -password ***** -scope 0 -user syembat
Cannot use the security file. Check the -secfilepath option.
An error occurred while decrypting the security file. The security file might be corrupted.Run -removeusersecurity to destroy the existing security file, then run -addusersecurity to create a new security file. Alternately, you may use the -secfilepath option.
When I go to use the -removeusersecurity as it instructs it tells me :
Cannot remove security file. Check file permissions.
My question is twofold: Why would this account act so differently from the other account, and where would naviseccli write the security file to by default that it wouldn't be able to remove it later?
Edit:
I was able to solve the problem by removing my personal account using the -removeusersecurity option and then logging onto the other account and doing an -addusersecurity.
Message was edited by:
BRuehl
naviseccli -addusersecurity -password ***** -scope 0 -user syembat
Cannot use the security file. Check the -secfilepath option.
An error occurred while decrypting the security file. The security file might be corrupted.Run -removeusersecurity to destroy the existing security file, then run -addusersecurity to create a new security file. Alternately, you may use the -secfilepath option.
When I go to use the -removeusersecurity as it instructs it tells me :
Cannot remove security file. Check file permissions.
My question is twofold: Why would this account act so differently from the other account, and where would naviseccli write the security file to by default that it wouldn't be able to remove it later?
Edit:
I was able to solve the problem by removing my personal account using the -removeusersecurity option and then logging onto the other account and doing an -addusersecurity.
Message was edited by:
BRuehl
No Events found!
BRuehl
40 Posts
0
April 3rd, 2008 11:00
BRuehl
40 Posts
0
April 3rd, 2008 11:00
I was able to solve the problem by removing my personal account using the -removeusersecurity option and then logging onto the other account and doing an -addusersecurity.
dynamox
11 Legend
•
20.4K Posts
•
87.4K Points
0
April 3rd, 2008 11:00
Thanks
dynamox
11 Legend
•
20.4K Posts
•
87.4K Points
0
April 3rd, 2008 12:00