Jazz Forum Welcome to the Jazz Community Forum Connect and collaborate with IBM Engineering experts and users

RRDI support DB2 data encrypt

Questions
Tags
Users
Badges
Charlotte Harris
(32912) retagged
May 27 '13, 4:51 a.m.
Hello,

I've had to change my DB2 instance authentication to data_encrypt, this was due to ITCS compliance issues.

db2 get dbm configuration
Database manager authentication (AUTHENTICATION) = DATA_ENCRYPT

I've restarted my db2 instance then started RRDI however cognos is now having problems connecting to my content manager error message is Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 .

Output of cogserver.log:

9.20.135.118:9101 17039420 2011-09-08 16:06:48.039 +0 server.startup : 2 LOGSV 6003 1 serve
r.Audit.IPF StartService LogService Success <parameters><item><CDATA></item><item><CDATA></item><item><CDATA></item></parameters>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.565 +0 pogoStartup na na 0 Thread-42 DISP 6017 1 Audit
.Other.dispatcher.DISP.com.cognos.pogo.contentmanager.coordinator.CMBootstrap getActiveContentManager ContentManager Failure <messages><message><m>DPR-CMI-4006 Unable to determine the active Content Manager. Will retry periodically.</messageString></message></messages>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.097 +0 Initialization_SESS Initialization_REQ Thread-42 CM
6020 1 Audit.cms.CM StartService Warning CM-CFG-5063 A Content Manager configuration error was detected while connecti
ng to the content store. CM-CFG-5036 Content Manager failed to connect to the content store. The connection string is "jdbc:db2://insightdb:50003/RRDI_CM:re
trieveMessagesFromServerOnGetMessage=true;fullyMaterializeLobData=false;". Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Cause: Connection authorization failure occurred. Reason:
Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Runtime Exception stack trace: com.ibm.db2.jcc.am.SqlInvalidAuthorizationSpecException
: Connection authorization failure occurred. Reason: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 at co
m.ibm.db2.jcc.am.ed.a(ed.java:674) at


With RQM/RTC we were able to add a securitymechanism=13 within the teamserver.properties file. Do we need to do something similar within cognos/RRDI and if so where?

0 votes

3 answers
9,479 views
0 votes

3 answers

Permanent link
Michael Fox
JAZZ DEVELOPER (61643) edited
Jan 21 '14, 11:47 a.m.
I don't know the answer to this. I may have to find somebody at Cognos who can supply this information. This is the same as the RRDI defect 175626 you created, right?

I have a contact at Cognos to work on this, and they are asking what version of DB2 and db2jcc.jar do you have? I put more details in the RRDI defect.
Apparently Cognos will not work with DATA_ENCRYPT. Supporting it will require a Cognos enhancement. More details are posted in the RRDI defect.

1 vote

Permanent link
Michael Fox
JAZZ DEVELOPER (61643) Sep 21 '11, 2:54 p.m.
Hello,

I've had to change my DB2 instance authentication to data_encrypt, this was due to ITCS compliance issues.

db2 get dbm configuration
Database manager authentication (AUTHENTICATION) = DATA_ENCRYPT

I've restarted my db2 instance then started RRDI however cognos is now having problems connecting to my content manager error message is Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 .

Output of cogserver.log:

9.20.135.118:9101 17039420 2011-09-08 16:06:48.039 +0 server.startup : 2 LOGSV 6003 1 serve
r.Audit.IPF StartService LogService Success <parameters><item><CDATA></item><item><CDATA></item><item><CDATA></item></parameters>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.565 +0 pogoStartup na na 0 Thread-42 DISP 6017 1 Audit
.Other.dispatcher.DISP.com.cognos.pogo.contentmanager.coordinator.CMBootstrap getActiveContentManager ContentManager Failure <messages><message><m>DPR-CMI-4006 Unable to determine the active Content Manager. Will retry periodically.</messageString></message></messages>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.097 +0 Initialization_SESS Initialization_REQ Thread-42 CM
6020 1 Audit.cms.CM StartService Warning CM-CFG-5063 A Content Manager configuration error was detected while connecti
ng to the content store. CM-CFG-5036 Content Manager failed to connect to the content store. The connection string is "jdbc:db2://insightdb:50003/RRDI_CM:re
trieveMessagesFromServerOnGetMessage=true;fullyMaterializeLobData=false;". Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Cause: Connection authorization failure occurred. Reason:
Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Runtime Exception stack trace: com.ibm.db2.jcc.am.SqlInvalidAuthorizationSpecException
: Connection authorization failure occurred. Reason: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 at co
m.ibm.db2.jcc.am.ed.a(ed.java:674) at


With RQM/RTC we were able to add a securitymechanism=13 within the teamserver.properties file. Do we need to do something similar within cognos/RRDI and if so where?


I don't know the answer to this. I may have to find somebody at Cognos who can supply this information. This is the same as the RRDI defect 175626 you created, right?

0 votes

Permanent link
Michael Fox
JAZZ DEVELOPER (61643) Sep 22 '11, 12:31 p.m.
Hello,

I've had to change my DB2 instance authentication to data_encrypt, this was due to ITCS compliance issues.

db2 get dbm configuration
Database manager authentication (AUTHENTICATION) = DATA_ENCRYPT

I've restarted my db2 instance then started RRDI however cognos is now having problems connecting to my content manager error message is Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 .

Output of cogserver.log:

9.20.135.118:9101 17039420 2011-09-08 16:06:48.039 +0 server.startup : 2 LOGSV 6003 1 serve
r.Audit.IPF StartService LogService Success <parameters><item><CDATA></item><item><CDATA></item><item><CDATA></item></parameters>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.565 +0 pogoStartup na na 0 Thread-42 DISP 6017 1 Audit
.Other.dispatcher.DISP.com.cognos.pogo.contentmanager.coordinator.CMBootstrap getActiveContentManager ContentManager Failure <messages><message><m>DPR-CMI-4006 Unable to determine the active Content Manager. Will retry periodically.</messageString></message></messages>
9.20.135.118:9101 17039420 2011-09-08 16:06:53.097 +0 Initialization_SESS Initialization_REQ Thread-42 CM
6020 1 Audit.cms.CM StartService Warning CM-CFG-5063 A Content Manager configuration error was detected while connecti
ng to the content store. CM-CFG-5036 Content Manager failed to connect to the content store. The connection string is "jdbc:db2://insightdb:50003/RRDI_CM:re
trieveMessagesFromServerOnGetMessage=true;fullyMaterializeLobData=false;". Connection authorization failure occurred. Reason
: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Cause: Connection authorization failure occurred. Reason:
Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 Runtime Exception stack trace: com.ibm.db2.jcc.am.SqlInvalidAuthorizationSpecException
: Connection authorization failure occurred. Reason: Security mechanism not supported. ERRORCODE=-4214, SQLSTATE=28000 at co
m.ibm.db2.jcc.am.ed.a(ed.java:674) at


With RQM/RTC we were able to add a securitymechanism=13 within the teamserver.properties file. Do we need to do something similar within cognos/RRDI and if so where?


I don't know the answer to this. I may have to find somebody at Cognos who can supply this information. This is the same as the RRDI defect 175626 you created, right?

I have a contact at Cognos to work on this, and they are asking what version of DB2 and db2jcc.jar do you have? I put more details in the RRDI defect.

0 votes

Your answer

Register or log in to post your answer.

Dashboards and work items are no longer publicly available, so some links may be invalid. We now provide similar information through other means. Learn more here.

Ask a question
Guidelines
FAQ
Search context
Follow this question

By Email: 

Once you sign in you will be able to subscribe for any updates here.

By RSS:

Answers
Answers and Comments
Question details
× 7,501
× 403
× 84

Question asked: Sep 16 '11, 6:41 a.m.

Question was seen: 9,479 times

Last updated: Jan 21 '14, 11:47 a.m.

Confirmation Cancel Confirm