Appendix
Troubleshooting
This section describes the how to troubleshoot the issue that you may encounter while integrating CipherTrust Manager with IBM FileNet Content Manager.
| Issue | Error Message | Remediation |
|---|---|---|
| KMIP registration is not enabled | The following error message is displayed in CipherTrust Records: "errorMessage": "Unregistered client, please register a new client from CLI or API or UI." | Check whether the KMIP registration is completed or not in Admin Settings > System > Interfaces > kmip. If it is not completed, refer to the steps mentioned in KMIP Client Registration. |
| User corresponding to username location in certificate (example: CN) has not been created CN = Common Name | The following error messages are displayed in CipherTrust Records: *"errorMessage": "username not found: "errorMessage": "Could not authenticate certificate user, * | Check whether the user corresponding to CN of the client certificates has been created in Keys & Access Management > Users. If the user is not created, create a new user with the same name as the CN field of the client certificates. After creating the user, add this user to the Key Admins and Key Groups. Refer to steps mentioned in |
| User has not been added to Key Admin group | The following error message is displayed in CipherTrust Records: "errorMessage": "authorization denied: verdict was deny: CreateKey" | Check whether the user corresponding to CN of the client certificates has been created under Keys & Access Management > Users. If the user is not added, add the user to the Key Admins group. |
| The Username location in Certificate has been set incorrectly | The following error messages are displayed in CipherTrust Records: "errorMessage": "username not found: "errorMessage": "Could not authenticate certificate user, | Check whether the Username Location in the Certificate option is set correctly to CN in Admin Settings > System > Interfaces > kmip. If it is not set correctly, set the correct value for the Username Location in the Certificate. |
