Note: The most common causes of failure in Safeguard for Privileged Passwords are either connectivity issues between the appliance and the managed system, or problems with service accounts. For more information, see Connectivity failures.
|Test Connection failures on archive server||Learn how to resolve Test Connection failures for archive servers.|
|Certificate issue||Learn how to resolve Test Connection failures for assets that require SSL.|
|Cipher support||Learn about Safeguard for Privileged Passwords's cipher support.|
|Domain controller issue||Learn how Safeguard for Privileged Passwords manages passwords for accounts on domain controllers.|
|Networking issue||Learn how to resolve system connectivity issues.|
|Windows WMI connection||Learn how to enable Safeguard for Privileged Passwords to manage Windows assets.|
Note: Disabling User Account Control (UAC) Admin Approval Mode on a remote host can also resolve Test Connection failures. For more information, see Change password fails.
When you run Test Connection, Safeguard for Privileged Passwords adds a file named Safeguard_Test_Connection.txt to the Storage Path location of the archive server owned by the Account Name you entered when you created the archive server. To run Test Connection on an existing archive server with a new account name, you must first delete the existing Safeguard_Test_Connection.txt file.
Both the Safeguard for Privileged Passwords client and the SSH server must support the same cipher. If you run Test Connection against an asset that uses SSH and there is no cipher supported by both the client and the server, Safeguard for Privileged Passwords displays an error message that says, "Connecting to asset XXXXXXXXXXXXXXXXXX failed (There is no cipher supported by both: client and server)". This means that during the setup of the asset connection, the Safeguard for Privileged Passwords client and the SSH server did not have matching ciphers for message encryption. In this case, you must modify the SSH server's configuration by adding at least one cipher supported by Safeguard for Privileged Passwords to the list of ciphers.
Safeguard for Privileged Passwords supports these ciphers.
For example, if using an OpenSSH server with a default list of ciphers, you must add one or more of these ciphers in the OpenSSH's sshd_config file, and then restart the SSH server. For more information about OpenSSH ciphers, see: http://www.openbsd.org/cgi-bin/man.cgi/OpenBSD-current/man5/sshd_config.5?query=sshd_config&sec=5