Management Console for Unix integrates with Privilege Manager, including the ability to centrally manage policy. The following topics may help you resolve some of the common problems you might encounter.
Management Console for Unix integrates with Privilege Manager, including the ability to centrally manage policy. The following topics may help you resolve some of the common problems you might encounter.
When you join a remote Sudo Plugin host to a policy group you are required to enter a password in the Joined password box. The join password is the password for the pmpolicy user that was set when the qpm-server was configured. See Configuring the primary policy server for details.
If the join operation does not recognize the pmpolicy user password, you will receive an error message with the following snippet:
Enter password for pmpolicy@<host>:
[FAIL]
- Failed to copy file using ssh.
- Error: Failed to add the host to the list of known hosts
(/var/opt/quest/qpm4u/pmpolicy/.ssh/known_hosts).
Permission denied, please try again.
Permission denied, please try again.
Permission denied (publickey,gssapi-keyex,gssapi-with-mic,password).
** Failed to setup the required ssh access.
** The pmpolicy password is required to copy a file to the primary
** policy server.
** To complete this configuration, please rerun this command and
** provide the correct password.
Run the join operation again entering a correct password.
If you run the Check Client for Policy Readiness with no errors and the console indicates that the host is "Ready to join" a policy group, yet the Join to Policy Group option is not available, this topic will help you troubleshoot the issue.
To join a host to a policy group, the host must meet all of the following conditions:
Once you meet these conditions, you can run the Join to Policy Group option from the Prepare panel of the All Hosts view. See Joining the host to a policy group for details.
If you have the qpm-server installed and you run Check Client for Policy Readiness from the mangement console and it tells you the policy server port is unavailable, check the port to see if another program is using that port.
© ALL RIGHTS RESERVED. Terms of Use Privacy Cookie Preference Center