Administration Guide › Troubleshooting › CA Server Automation Troubleshooting › Password Changes May Cause Authentication Errors › Active Directory Password Expiration Causes Log in Issues

Active Directory Password Expiration Causes Log in Issues

Symptom:

I cannot display the CA Server Automation user interface.

Solution:

If your CA Server Automation installation is configured to connect to Active Directory, the user who installs CA Server Automation is automatically registered with CA EEM. The registration of this user lets CA Server Automation authenticate users from the Active Directory domain. If the password for this user changes, users are no longer able to log in to the CA Server Automation user interface because CA EEM cannot authenticate them.

Resolve this issue by changing the password for the user who installed the product.

To change the user password

1. Click Start, Programs, CA, Embedded Entitlements Manager, EEM UI to log in to the CA EEM user interface.
2. Select Admin from the application drop-down list, leave the user name EiamAdmin, enter your password, and click Log In.
3. Click Configure, and then EEM Server.
4. Click Global Users/Global Groups in the left pane and leave the "Reference from an external directory" option selected.
5. Leave Microsoft Active Directory for Type, enter a new password in the Password and Confirm Password fields, and click Save.
6. Select Start, Program Files, CA, CA Server Automation, CA Server Automation Command Prompt. Run the following command from the CA Server Automation command prompt:

   dpmutil -set -sysuser
   

   You are prompted for the CA EEM user name and password.

Note: The Apache HTTP Server log file, located at Install_path\Apache\logs\error.log, can confirm proper product startup. If the last entry is “Validating EEM is available,” then there is still a credential problem. Verify that the credentials used with the dpmutil command can be used to log in to the CA EEM user interface. Retry the dpmutil command using valid credentials.