V-16-20046-2: Failed to decrypt password, error code: -2

book

Article ID: 100051267

calendar_today

Updated On:

Description

Error Message

Checking the Engine_A.log located at %VCS_HOME%\log, it would report the below entry at the time of failure of Oracle resource

VCS ERROR V-16-1-54031 Resource Oracle_resource (Owner: Unspecified, Group: ) is FAULTED on sys

 

Checking the Oracle_A.log located at %VCS_HOME%\log, it would report the below entry at the time of failure of Oracle resource

VCS ERROR V-16-20046-2 Oracle:Oracle_resource:monitor:Failed to decrypt password , error code:-2

VCS ERROR V-16-20046-2 Oracle: Oracle_resource:monitor:Failed to decrypt password , error code:-2

Cause

When configuring the Oracle resource, it requires a mandatory attribute as "EncryptedPasswd"

The error is observed when this attribute has either an incorrect password or no password at all.

One of the possible reasons for this could that the password was changed at the Oracle application level but not updated in Veritas Cluster Server (VCS)

NOTE: Updating/changing the password at the Oracle application level does not auto-update the password in VCS

 

Resolution

1) To begin with, verify from the main.cf file located at %VCS_HOME%/conf/config, if the "EncryptedPasswd" attribute is indeed incorrect.

SAMPLE CONFIGURATION BELOW

    Oracle db_server (

        ServiceName = OracleService

        DetailMonitor = 1

        IndepthMonitorCount = 1

        Domain @TESTNODE1 = "lab.com"

        Domain @TESTNODE2 = "lab.com"

        SID = Lab1

        UserName @TESTNODE1 = administrator

        UserName @ TESTNODE2 = administrator

        EncryptedPasswd @TESTNODE1 = flhPnpPnlPgrPpoRltPtfPhpHrlTl

        EncryptedPasswd @TESTNODE2 = cc

        SQLFile = "C:\\Program Files\\Veritas\\Cluster Server\\bin\\oracle\\check_db.SQL"

        SQLTimeOut = 60

As seen in the above example, the EncryptedPasswd @TESTNODE2 is “cc”.

Comparing the values for "EncryptedPasswd" attribute for TESTNODE1 and TESTNODE2, the value for TESTNODE2 is likely to be incorrect. 

2) Verify the password with the Oracle admin or from any of the previous main.cf which are located in the same folder %VCS_HOME%/conf/config

3) After obtaining the correct password, update the "EncryptedPasswd" attribute with that from the Veritas Cluster Server Java Console.

NOTE: Once the correct password is updated for the resource, VCS will auto-encrypt the password. 

4) Save and close the configuration after making that change by running "haconf -dump -makero" from an elevated command prompt.

5) Probe the resource and then try to online it now and it should be a success. 

 

Issue/Introduction

Powered by Wolken Software