HPE Community
Operating System - HP-UX
1754926 Members
3121 Online
108827 Solutions
New Discussion юеВ

Re: HIDS error on 11i v3

 
SOLVED
Go to solution
maxell_1
Frequent Advisor

тАО05-23-2010 04:55 PM

тАО05-23-2010 04:55 PM

HIDS error on 11i v3

Hi gurus,

I am getting below error when executing the command "ids_genAdminKeys" on the HIDS server.

Error:
random number generation device incorrectly loaded

Help apprciated as no useful resource from Internet to help me on this.

Thanks
0 Kudos
10 REPLIES 10
maxell_1
Frequent Advisor

тАО05-25-2010 07:00 PM

тАО05-25-2010 07:00 PM

Re: HIDS error on 11i v3

Hi All, Any interested parties who can help me to resolve the problem? Thanks
0 Kudos
Emil Velez
Honored Contributor

тАО05-29-2010 05:49 PM

тАО05-29-2010 05:49 PM

Solution

Re: HIDS error on 11i v3

looks like /dev/random may not be installed correctly.

look at lsdev and see if the random driver is included.
0 Kudos
VK2COT
Honored Contributor

тАО05-30-2010 01:29 AM

тАО05-30-2010 01:29 AM

Re: HIDS error on 11i v3

Hello,

It seems that OS-Core.RNG-DKRN (HP-UX Strong
Random Number Generator) is not installed or
configured properly.

The other possibility is that random devices
in /dev directory are not correct (permissions,
minor number, major number ownership).

Also, check /etc/rc.log for error code
for /etc/init.d/prngd start up.

Cheers,

VK2COT


VK2COT - Dusan Baljevic
0 Kudos
maxell_1
Frequent Advisor

тАО07-04-2010 10:53 PM

тАО07-04-2010 10:53 PM

Re: HIDS error on 11i v3

HI Thanks for the explanations. Further look into lsdev shows that the driver is unknown when it should be pseudo as below.

*************************************
# lsdev | grep rng
132 -1 rng unknown
*************************************

Can this be the reason and how to overcome it. Thanks.
0 Kudos
maxell_1
Frequent Advisor

тАО07-05-2010 04:36 PM

тАО07-05-2010 04:36 PM

Re: HIDS error on 11i v3

Anybody?? Help appreciated. Thx
0 Kudos
VK2COT
Honored Contributor

тАО07-05-2010 05:41 PM

тАО07-05-2010 05:41 PM

Re: HIDS error on 11i v3

Hello,

It strongly points to the wrong setup
or installation.

a) What does this command show:

# lsdev -c 132

b) What are log files saying?
/etc/rc.log, for example.

c) Run:

# kcmodule -v rng

d) Run a small test and debug it:

# openssl genrsa -des3 -out mydom.dom.key 1024

If the module is not loaded,
try to load it.


Cheers,

VK2COT
VK2COT - Dusan Baljevic
0 Kudos
VK2COT
Honored Contributor

тАО07-05-2010 05:44 PM

тАО07-05-2010 05:44 PM

Re: HIDS error on 11i v3

... One more thing:

## ll /dev/*random

Your major number for devices /dev/*random
MUST match character device for rng module in
lsdev(1M).

VK2COT
VK2COT - Dusan Baljevic
0 Kudos
maxell_1
Frequent Advisor

тАО07-05-2010 06:02 PM

тАО07-05-2010 06:02 PM

Re: HIDS error on 11i v3

Hi VK2,

Thanks for the response. I have tried all the commands check you suggested. It failed when performing the ssl debug. Attached the output of the test. Please advice. Thx
0 Kudos
maxell_1
Frequent Advisor

тАО07-05-2010 08:32 PM

тАО07-05-2010 08:32 PM

Re: HIDS error on 11i v3

Found the solution ... problem was rng module not loaded.... load the module and solved. Thx for all the help.
0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.