AFT Agent authentication problem

[johnnyh]

Hopefully someone can help me! We are trying to get an AFT user set up. Host1 is the localhost (Solaris 10) and we are using local authentication. I know that the username/password is correct but when I try to "validate" the account I get the following message:

Host 1 validation failed: Unable to acquire the password for user '*****'!!!.
This machine implements password shadowing. Shadow passwords are readable by the
root user only.
To check the local account try to take the following steps:
--------------------------------------------------------------------------------
1) Log in as root and change directory to Control-M/Agent user home directory.
2) Run 'source .cshrc' or '. .profile' .
3) Run 'ctmaftacc' and try to validate the account.

Anyone have an idea what I'm doing wrong? The agent processes run as root but from what user is the process authenticating?

[philmalmaison]

yes as the message said, only root user can do the setup on standard solaris (without nis).
so log on as root, navigate, source the cshrc, and try again ctmaftacc'

you can also do the same things by using configuration manager (in 6.2./6.3)
to do so, you just have to get the CCM on the control-m server having the agent under AFT.


the command is ctmgetcm and the list return message add CCM AFT to the list ...

after that CCM AFT should be manage by configuration manager

regards
philmalmaison

[johnnyh]

Thanks I will give this a try.
Does anyone know why on earth the AFT agent tries to read the shadow file in order to authenticate the password? Seems crazy to me. You have to supply a username and password in the configuration GUI this is all you need to validate.

[mauriziog]

In the aft account are stored the ftp user and pass, used for the ftp connection.
This for remote host and also for local host.
The local authentication can differ to that used for running "normal" (not AFT) jobs.