Your suggested change has been received. Thank you.

close
Thales Logo

All

  • All
  • CipherTrust Manager
  • CipherTrust Application Data Protection (CADP)
  • CipherTrust Application Key Management (CAKM)
  • CipherTrust Batch Data Transformation (BDT)
  • CipherTrust Cloud Key Management (CCKM)
  • CipherTrust Data Discovery and Classification (DDC)
  • CipherTrust Data Protection Gateway (DPG)
  • CipherTrust Database Protection (CDP)
  • CipherTrust Intelligent Protection (CIP)
  • CipherTrust Integrations
  • CipherTrust Migrations
  • CipherTrust RESTful Data Protection (CRDP)
  • CipherTrust Transparent Encryption (CTE)
  • CipherTrust Transparent Encryption Userspace (CTE-U)
  • CipherTrust Secrets Management (CSM)
  • CipherTrust Vaulted Tokenization (CT-V)
  • CipherTrust Vaultless Tokenization (CT-VL)
  • CTE-Linux
  • CTE-Windows
  • CTE-AIX
  • CTE-K8s
  • CTE-U
  • Crypto Command Center
  • Data Protection on Demand
  • Luna Cloud HSM
  • Luna Network HSM
  • Luna PCIe HSM
  • Luna USB HSM
  • OneWelcome Identity Platform
  • ProtectApp LUKS
  • ProtectServer 2 HSM
  • ProtectServer 3 HSM
  • SafeNet Trusted Access (STA)
  • SafeNet MobilePASS+
  • SafeNet MobilePASS+ for Android
  • SafeNet MobilePASS+ for Chrome
  • SafeNet MobilePASS+ for macOS
  • SafeNet MobilePASS+ for iOS
  • SafeNet MobilePASS+ for WatchOS
  • SafeNet MobilePASS+ for Windows
  • SafeNet Synchronization Agent
  • SafeNet Logging Agent
  • SafeNet Agent for FreeRADIUS
  • SafeNet Agent for NPS
  • SafeNet Agent for Windows Logon
  • SafeNet Authentication Service Private Cloud Edition (SAS PCE)
  • SafeNet Remote Logging Agent
  • SafeNet Keycloak Agent
  • SafeNet IDPrime Virtual (IDPV)
  • SafeNet FIDO Key Manager
  • SafeNet FIDO Key Manager for Android
  • SafeNet FIDO Key Manager for iOS
  • SafeNet FIDO Key Manager for Windows
back

HPE StoreOnce

Appendix

search
printsuggest an editpdf paneldownload

Appendix

copy link to clipboardTroubleshooting

IssueError MessageRemediation
KMIP registration is not enabledThe following error message is displayed in CipherTrust Records:
"errorMessage": "Unregistered client, please register a new client from CLI or API or UI."		Check whether the Autoregistration option is selected in Admin Settings > System > Interfaces > kmip.
If it is not selected, turn on the Autoregistration option.
Refer to the steps mentioned in Enable KMIP Client Registration.
User corresponding to username location in the certificate (for example, OU/UID) is not createdThe following error messages are displayed in CipherTrust Records:
"errorMessage": "username not found: "
"errorMessage": "Could not authenticate certificate user, hence the client is not auto registered in mode tls-cert-pw-opt"		Check whether the user corresponding to UID/OU of the node certificates is created in Keys & Access Management > Users.
If the user is not created, create a new user with the same name as the OU/UID field of the node certificates. After creating the user, add this user to the Key Admins.
Refer to the steps mentioned in Create a New User.
User is not added to the Key Admin groupThe following error message is displayed in CipherTrust Records:
"errorMessage": "authorization denied: verdict was deny: CreateKey"		Check whether the user corresponding to UID/OU of the node certificates is created under Keys & Access Management > Users.
If the user is not added, add the user to the Key Admins group.
The username location in the Certificate is set incorrectlyThe following error messages are displayed in CipherTrust Records:
"errorMessage": "username not found: "
"errorMessage": "Could not authenticate certificate user, hence the client is not auto registered in mode tls-cert-pw-opt"		Check whether the username location in the Certificate option is set correctly to OU/UID in Admin Settings > System > Interfaces > kmip.
If it is not set correctly, set the correct value for the username location in the Certificate.

On this page