Re: Managed Server Passwords out of sync

2006-01-29 Thread Allan Mills 
further details of my problem, it also occurred on password expiration,
and I have also gotten the shrug.
the only suggestion was on the managed server delete all profiles, delete
server and rebuild which
leaves me a little wary.   what am I going to miss (especially as I did
not build it and it is not very well
documented)
The other thing that I noticed was that the profiles on the configuration
server were owned/last updated by
TSM admin who had moved on and I had removed them as admins.   They
stopped working until I updated them
 (I did so as admin so this would not happen again)
I have been able to get remote db backups working again by updating the
configuration servers passwords to match
what my record show the old passwords were but configuration replication
is still failing .  I guess this is using
a password that I do not know.





Allan Mills | AIX and TSM Administrator
Business  Technology Services | New South Wales Police

8835 9286 (internal 29286)



Allen S. Rout [EMAIL PROTECTED]
Sent by: ADSM: Dist Stor Manager ADSM-L@VM.MARIST.EDU
28/01/2006 02:31
Please respond to
ADSM: Dist Stor Manager ADSM-L@VM.MARIST.EDU


To
ADSM-L@VM.MARIST.EDU
cc

Subject
Re: [ADSM-L] Managed Server Passwords out of sync







 On Fri, 20 Jan 2006 13:00:37 -0500, Allen S. Rout [EMAIL PROTECTED] said:
 On Fri, 20 Jan 2006 08:05:42 +1100, Allan Mills
[EMAIL PROTECTED] said:

 Folks

 I have 2 TSM servers and a couple of days ago remote db backups
 started to fail the error message is below:

 I have a PMR going about precisely this behavior, AIX 5.2, TSM
 5.3.2.1 Will echo conclusions; so far the interaction has
 been... unedifying.


I've gotten what amounts to a shrug.  I'm trying to escalate.  Anybody
else have server volumes start to fail after a 5.3 upgrade?  What
seems to happen in my case is that for the first server password
expiration after the upgrade, the automatic password update fails.  If
you're using these remote volumes for DBBACKUPTRIGGER, then your
incremental at the trigger point fails. Result coredump in [mumble]
days.  If you're not in rollforward, you might not notice the failure
unless you're checking recentness of DB backups.

Anyone else seeing a similar failure?

Here's a log snippet of a failure on the volume-client actlog


01/18/06   08:10:01 ANR4373E Session rejected by target server CTRL,
reason: Authentication Failure. (SESSION: 65036)
01/18/06   08:10:01 ANR4383E Session failure, target server CTRL has
aborted current transaction; reason: Transaction failed. (SESSION: 65036)
01/18/06   08:10:01 ANR4379E The source server was unable to update
the password on target server CTRL. (SESSION: 65036)


and here's the volume-server

01/18/06   08:10:01 ANR0406I Session 71109 started for node INT
(AIX-RS/6000) (Tcp/Ip tsm2en1.cns.ufl.edu(43034)). (SESSION: 71109)
01/18/06   08:10:01 ANR0425W Session 71109 for node INT (AIX-RS/6000)
refused - password has expired. (SESSION: 71109)
01/18/06   08:10:01 ANR0403I Session 71109 ended for node INT
(AIX-RS/6000). (SESSION: 71109)
01/18/06   08:10:01 ANR0406I Session 71110 started for node INT
(AIX-RS/6000) (Tcp/Ip tsm2en1.cns.ufl.edu(43036)). (SESSION: 71110)
01/18/06   08:10:01 ANR0500W Transaction failed for session 71110 for
node INT (AIX-RS/6000) - invalid password submitted. (SESSION: 71110)
01/18/06   08:10:01 ANR0479W Session 71110 for server INT
(AIX-RS/6000) terminated - connection with server severed. (SESSION:
71110)


That first rejection appears to be a correct failure, noting the
expiration.  The second is the problem.

It seems almost like the volume-server is keeping more than one
version of the password around; one is used for ongoing operations,
and another different store is consulted when you go to update.  The
same volume-client - volume-server combination had a successful backup
three hours before the failure quoted above.



- Allen S. Rout


All mail is subject to content scanning for possible violation of New
South Wales Police
electronic Mail Policy. All persons are required to familiarise themselves
with the
content of the policy located on the MEMO Bulletin Board and on the NSWP
Intranet.




This message and any attachment is confidential and may
be privileged or otherwise protected from disclosure. If you
have received it by mistake, please let us know by reply
and then delete it from your system; you should not copy
the message or disclose its contents to anyone.

Re: Managed Server Passwords out of sync

2006-01-27 Thread Allen S. Rout 
 On Fri, 20 Jan 2006 13:00:37 -0500, Allen S. Rout [EMAIL PROTECTED] said:
 On Fri, 20 Jan 2006 08:05:42 +1100, Allan Mills [EMAIL PROTECTED] said:

 Folks

 I have 2 TSM servers and a couple of days ago remote db backups
 started to fail the error message is below:

 I have a PMR going about precisely this behavior, AIX 5.2, TSM
 5.3.2.1 Will echo conclusions; so far the interaction has
 been... unedifying.


I've gotten what amounts to a shrug.  I'm trying to escalate.  Anybody
else have server volumes start to fail after a 5.3 upgrade?  What
seems to happen in my case is that for the first server password
expiration after the upgrade, the automatic password update fails.  If
you're using these remote volumes for DBBACKUPTRIGGER, then your
incremental at the trigger point fails. Result coredump in [mumble]
days.  If you're not in rollforward, you might not notice the failure
unless you're checking recentness of DB backups.

Anyone else seeing a similar failure?

Here's a log snippet of a failure on the volume-client actlog


01/18/06   08:10:01 ANR4373E Session rejected by target server CTRL, 
reason: Authentication Failure. (SESSION: 65036)
01/18/06   08:10:01 ANR4383E Session failure, target server CTRL has 
aborted current transaction; reason: Transaction failed. (SESSION: 65036)
01/18/06   08:10:01 ANR4379E The source server was unable to update the 
password on target server CTRL. (SESSION: 65036)


and here's the volume-server

01/18/06   08:10:01 ANR0406I Session 71109 started for node INT 
(AIX-RS/6000) (Tcp/Ip tsm2en1.cns.ufl.edu(43034)). (SESSION: 71109)
01/18/06   08:10:01 ANR0425W Session 71109 for node INT (AIX-RS/6000) 
refused - password has expired. (SESSION: 71109)
01/18/06   08:10:01 ANR0403I Session 71109 ended for node INT 
(AIX-RS/6000). (SESSION: 71109)
01/18/06   08:10:01 ANR0406I Session 71110 started for node INT 
(AIX-RS/6000) (Tcp/Ip tsm2en1.cns.ufl.edu(43036)). (SESSION: 71110)
01/18/06   08:10:01 ANR0500W Transaction failed for session 71110 for node 
INT (AIX-RS/6000) - invalid password submitted. (SESSION: 71110)
01/18/06   08:10:01 ANR0479W Session 71110 for server INT (AIX-RS/6000) 
terminated - connection with server severed. (SESSION: 71110)


That first rejection appears to be a correct failure, noting the
expiration.  The second is the problem.

It seems almost like the volume-server is keeping more than one
version of the password around; one is used for ongoing operations,
and another different store is consulted when you go to update.  The
same volume-client - volume-server combination had a successful backup
three hours before the failure quoted above.



- Allen S. Rout

Re: Managed Server Passwords out of sync

2006-01-20 Thread Allen S. Rout 
 On Fri, 20 Jan 2006 08:05:42 +1100, Allan Mills [EMAIL PROTECTED] said:


 Folks

 I have 2 TSM servers and a couple of days ago remote db backups
 started to fail the error message is below:


I have a PMR going about precisely this behavior, AIX 5.2, TSM 5.3.2.1
Will echo conclusions; so far the interaction has been... unedifying.


- Allen S. Rout

Managed Server Passwords out of sync

2006-01-19 Thread Allan Mills 
Folks

I have 2 TSM servers and a couple of days ago remote db backups started to
fail
the error message is below:

Server Version 5, Release 3, Level 1.4
Aix 5.2. ML 6


01/20/06   08:00:28  ANR2281I Incremental database backup started as
process
  26. (SESSION: 259, PROCESS: 26)
01/20/06   08:00:28  ANR2753I (TSMDB_REMOTE):ANR0984I Process 26 for
DATABASE
  BACKUP (SESSION: 259)
01/20/06   08:00:28  ANR2753I (TSMDB_REMOTE):started in the FOREGROUND at
  08:00:28.  (SESSION: 259)
01/20/06   08:00:28  ANR2753I (TSMDB_REMOTE):ANR2281I Incremental database
  backup started (SESSION: 259)
01/20/06   08:00:28  ANR2753I (TSMDB_REMOTE):as process 26.  (SESSION:
259)
01/20/06   08:00:29  ANR0444W Protocol error on session 260 for node
TSMPRD02
  (AIX-RS/6000) - out-of-sequence verb (type
AuthResult)
  received. (SESSION: 259)
01/20/06   08:00:29  ANR4373E Session rejected by target server TSMPRD01,
  reason: Authentication Failure. (SESSION: 259)
01/20/06   08:00:29  ANR1404W Scratch volume mount request denied - mount
  failed. (SESSION: 259, PROCESS: 26)
01/20/06   08:00:29  ANR4578E Database backup/restore terminated -
required
  volume was not mounted. (SESSION: 259, PROCESS: 26)
01/20/06   08:00:29  ANR0985I Process 26 for DATABASE BACKUP running in
the
  FOREGROUND completed with completion state FAILURE
at
  08:00:29. (SESSION: 259, PROCESS: 26)
01/20/06   08:00:29  ANR2753I (TSMDB_REMOTE):ANR4578E Database
backup/restore
  terminated (SESSION: 259)

I noted that serverpassword expiry is the default 90 and serverpassword
was set 96 days ago.
With password generate I was of the opinion that this looked after itself.


Does anyone have an idea how I can get them back into sync and remote db
backups /config refresh etc
working again

 Server Name: TSMPRD01
 Comm. Method: TCPIP
   High-level Address: XX.XX.XX.XX
Low-level Address: 1501
  Description: Domino TSM Server
Allow Replacement: No
Node Name: TSMPROD02
Last Access Date/Time: 01/20/06   08:00:29
   Days Since Last Access: 1
  Locked?: No
  Compression: No
  Archive Delete Allowed?: (?)
  URL:
   Registration Date/Time: 10/15/04   16:08:34
Registering Administrator: ADMIN
  Bytes Received Last Session: 201
  Bytes Sent Last Session: 110
 Duration of Last Session: 0.14
  Pct. Idle Wait Last Session: 8.76
 Pct. Comm. Wait Last Session: 0.00
 Pct. Media Wait Last Session: 0.00
Grace Deletion Period: 5
 Managing profile:
  Server Password Set: Yes
Server Password Set Date/Time: 10/16/05   12:35:11
   Days Since Server Password Set: 96
 Invalid Sign-on Count for Server: 0
  Virtual Volume Password Set: Yes
Virtual Volume Password Set Date/Time: 01/19/06   09:22:32
   Days Since Virtual Volume Password Set: 1
Invalid Sign-on Count for Virtual Volume Node: 0
Validate Protocol: No
  Version: 5
  Release: 3
Level: 1.4
  Role(s): Virtual Volumes Enterprise
Configuration

Allan Mills | AIX and TSM Administrator
Business  Technology Services | New South Wales Police

8835 9286 (internal 29286)

This message and any attachment is confidential and may
be privileged or otherwise protected from disclosure. If you
have received it by mistake, please let us know by reply
and then delete it from your system; you should not copy
the message or disclose its contents to anyone.