Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2043
Views
5
Helpful
2
Replies

Secure-store initialization failure on CM

Go to solution
David Niemann
Level 3
Level 3

‎12-28-2010 10:31 AM

I followed the directions for resetting the secure-store on the CM for a "forgotten password" and when I get to the part of reinitializing the secure-store I get the following error.

NA151-4WAASMGR1#cms secure-store init

Stopping cms.

*******************************************************************

* 1) Must be between 8 to 64 characters in length                 *

* 2) Allowed character set is A-Za-z0-9~%'!#$^&*()|;:,"<>/*

* 3) Must contain at least one digit                              *

* 4) Must contain at least one lowercase and one uppercase letter *

*******************************************************************

Enter pass-phrase:

Confirm pass-phrase:

Secure Store initialization failed. If Secure Store was previously reset, follow the steps documented in the Configuration Guide section 'Resetting Secure Store Encryption on a Central Manager' to finish Central Manager Secure Store reset process. Configuration updates from Primary Central Manager to WAEs are not sent until Secure Store is initialized.

Starting cms.

I tried to reset it again and it appears to be in a not initialized and not opened state.

NA151-4WAASMGR1#cms secure-store clear

Secure-store not open.

NA151-4WAASMGR1#cms secure-store reset

Secure-store is not in "initialized and not opened state".

Any ideas? Version is 4.3.1

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Bhavin Yadav
Cisco Employee
Cisco Employee

‎12-28-2010 11:02 AM

Hi David,

You can only reset the secure store if it is open. Otherwise it will not work.

Here is something you may want to try.

1. Disable TACACS and delete all the other users from CM, leaving only default admin account. Reset the admin password and try to initiate the secure store.

2. Make sure no accounts are showing up as Locked account on CM.

3. Try applying "cms database maintenance" on CM from CLI to make sure database is in good condition.

4. Try initializing the secure store from CM GUI. Once initialized, try opening it using Open CMS Secure store option. You may want to try clearing before opening it. That migth work, though I am not sure.

If this works, you can then reset / clear the secure store.

Hope this helps.

Regards.

PS: Please mark this Answered, if this resolves the issue.

View solution in original post

2 Replies 2

Go to solution
Bhavin Yadav
Cisco Employee
Cisco Employee

‎12-28-2010 11:02 AM

Hi David,

You can only reset the secure store if it is open. Otherwise it will not work.

Here is something you may want to try.

1. Disable TACACS and delete all the other users from CM, leaving only default admin account. Reset the admin password and try to initiate the secure store.

2. Make sure no accounts are showing up as Locked account on CM.

3. Try applying "cms database maintenance" on CM from CLI to make sure database is in good condition.

4. Try initializing the secure store from CM GUI. Once initialized, try opening it using Open CMS Secure store option. You may want to try clearing before opening it. That migth work, though I am not sure.

If this works, you can then reset / clear the secure store.

Hope this helps.

Regards.

PS: Please mark this Answered, if this resolves the issue.

Go to solution
David Niemann
Level 3
Level 3
In response to Bhavin Yadav

‎12-28-2010 11:49 AM

That worked.  I removed any non-default accounts and then it let me initialize and open the secure-store with a new password.  Strange, but I'll take it.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card