Last updated on NOVEMBER 04, 2016
Applies to:Oracle Tuxedo - Version 8.1 to 9.1
Information in this document applies to any platform.
Information in this document applies to any platform
- Server Domain (LocalDomain): DM_PW, INCOMING_ONLY, 128 encryption, CMPLIMIT=1
- Client Domain (RemoteDomain): DM_PW, ON_STARTUP, 128 encryption, CMPLIMIT=1
If the first password pair is loaded on LocalDomain using dmadmin/passwd with -r option, the second password pair is loaded on RemoteDomain without -r option, then the gateway connection would fail with error (in ULOG of LocalDomain):
LIBGWT_CAT:1535: ERROR: Channel binding security failure
LIBGWT_CAT:1609: ERROR: Both password pairs failed to decrypt authenticator for TDomain session <LocalDomain, RemoteDomain>, error code 3, open connection failed!
LIBGWT_CAT:1550: ERROR: Failed security validation with remote domain (domainid=RemoteDomain)
There are two problems here:
1. The -r option for dmadmin/passwd command is disabled in Tuxedo 8.1, it does not work the same way as in Tuxedo 7.1.
Even without second password pair in picture, the gateway still won't connect if password is loaded with -r option.
2. If -r option invalidate the first pair of password, gateway should use the second pair which is loaded correctly without using -r option.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
Million Knowledge Articles and hundreds of Community platforms