Cannot log on to Tivoli Enterprise Portal with valid user ID and password

When you log on to Tivoli Enterprise Portal, a valid user ID and password combination is rejected. If you provided a correct user ID and password, you should try these instructions.

About this task

Although Integrated Cryptographic Service Facility (ICSF) provides robust password encryption, you are not required to use it because the ICSF affects compatibility with the z/OS® OMEGAMON monitoring products.

The following messages are displayed when the portal server cannot connect to the monitoring server:

Call to KLE_CryptoGetFP failed with exit code 8.
Cannot get CSNBXAE function pointer
Logon validation did not complete - system error.
User:username keyfile:key ip:ip_address

If you see these failed connection messages, perform the following steps so that the Tivoli Enterprise Portal can connect to the Tivoli Enterprise Monitoring Server.

To reconfigure using PARMGEN, do the following:
  1. Locate the configuration profile for this instance of the monitoring agent.
  2. In the configuration profile, locate the following KDS_TEMS_SECURITY_KDS_VALIDATE parameter and set the value to N. Save the configuration profile.
  3. If you change any of these values, you must update the configuration values in the RTE.
After the Tivoli Enterprise Monitoring Server configuration is complete and the server is running, you must modify the portal server configuration to use an older, less robust encoding algorithm by performing the following steps:
  1. Edit the kfwenv file, for Windows, install_dir\CNPS (where install_dir is C:\IBM\ITM by default) using a text editor.

    On Linux/UNIX, you must edit the <ITM Home>/<OS Specific Folder>/cq/bin/<OS name>env file. (For example, on Linux for System z: /opt/IBM/ITM/ls3263/cq/bin/lnxenv). The following steps are the same.

  2. On a line by itself, enter the following text:
    USE_EGG1_FLAG=1
  3. Save the file and exit.
  4. Stop the Tivoli Enterprise Portal Server, if it is running, and start it again.