Previous Topic: CA Directory Web Services IssuesNext Topic: Credential Handling Service Login Issues

Troubleshooting GuideTenant Deployment Issues“Unable to process your Request now” Error Message When Accessing the User Console

“Unable to process your Request now” Error Message When Accessing the User Console

Symptom

When accessing the User Console, the following error message appears: “Unable to process your Request now.”

Consider the following three solutions.

Solution 1

This error can appear when the Credential Handling Service does not have the correct Tenant Web Services shared secret.

By default, CA CloudMinder is configured with the assumption that Tenant Web Services keeps the default shared secret.

During the installation of the SiteMinder Policy Server, if the _aa_tws_shared_secret property in properties.sh is set to another value, then you need to make Tenant Web Services and the Credential Handling Service aware of this shared secret using the following procedure:

Note: This is a multi-part procedure, with procedures for both editing and viewing the various shared secret configurations in two places.

Correct the Tenant Web Services shared secret

On the SiteMinder Policy Server and the Tenant Web Services shared secret configuration:

  1. cd /opt/CA/AdvancedAuth/Tomcat/webapps/tenant-services/WEB-INF/classes/resources
  2. (optional) dos2unix tenantconfiguration.xml
  3. Edit tenantconfiguration.xml
  4. Set twssecret to the value of _aa_tws_shared_secret from the properties.sh file, and make sure isencrypted=false.
  5. Restart Advance Authentication Tomcat.
  6. View tenantconfiguration.xml again.
  7. Copy the now-encrypted shared secret.

Correct the SPS-Credential Handling Service shared:

Follow these steps:

  1. Edit /opt/CA/secure-proxy/Tomcat/webapps/chs/WEB-INF/classes/config/chsConfig.properties file as follows:
  2. Copy the encrypted value of_aa_tws_shared_secret from the tenantconfiguration.xml file and place it as the sharedsecret value in the chsConfig.properties file.
  3. Restart SPS.

Check the Tenant Web Service Configuration

To obtain tenant information, CA CloudMinder invokes the CA IdentityMinder tenant Web Service. Check its configuration in the tenant user console.

  1. Navigate to System, Web Services, Modify Web Service.
  2. Search for and then select the Web Service object.
  3. On the Security tab, make sure to clear the Require Secure Communication option.

Increase Logging Level

If after checking the configuration,the problem persists, follow these steps:

  1. Increase Tenant Web Services logging level by completing the following steps:
    1. Connect to the system where the SiteMinder Policy Server and Advanced Authentication are installed.
    2. Edit /opt/CA/AdvancedAuth/Tomcat/webapps/tenant-services/WEB-INF/classes/resources/webserviceslogger.properties to set the log level to DEBUG.
    3. Restart the Advanced Authentication Tomcat server.
  2. Repeat the use case.
  3. Review the twslogging.log file, located by default in /opt/CA.