Troubleshooting
Problem
In IBM Security Access Manager 9.0.7.0 and 9.0.7.1, configuration snapshots will fail to apply after March 22, 2020. When attempting to apply a snapshot after this date an error will occur, and a message similar to the following will appear in the system log:
Error: MesaSecureFileMgr::signatureIsValid(): acme error:failed:idup_se_singlebuffer_unprotect:GSS_S_FAILURE:GSS_S_MINOR_SIGNER_CERT_BAD
This impacts both the appliance and the Docker image.
If you are currently running version 9.0.7.0 or 9.0.7.1 (appliance or Docker) or upgrade to one of these versions you MUST install a fix for this issue, otherwise all snapshots created since March 22, 2020 will be invalid. Snapshots created at 9.0.7.0 or 9.0.7.1 before March 22, 2020 remain valid and can be applied as long as the fix has been installed first.
Resolving The Problem
In a Docker environment you need to recreate your Docker containers using the following Docker images:
| Version | Image |
| 9.0.7.0 | ibmcom/isam:9.0.7.0_IF2 |
| 9.0.7.1 | ibmcom/isam:9.0.7.1_IF4 |
In an ISAM virtual or hardware appliance environment, the following fixes available from Fix Central resolve the issue:
| Version | Fix |
| 9.0.7.0 | 9.0.7.0-ISS-ISAM-SNAPSHOT-FIX |
| 9.0.7.1 | 9.0.7.1-ISS-ISAM-SNAPSHOT-FIX |
Document Location
Worldwide
[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSZU8Q","label":"IBM Security Access Manager"},"Component":"","Platform":[{"code":"PF004","label":"Appliance"}],"Version":"9.0.7","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]
Was this topic helpful?
Document Information
Modified date:
23 March 2021
UID
ibm16117526