IBM Security Privileged Identity Manager, Version 2.0

Common problems and solutions

Find possible solutions to common problems.

Table 1. Lists some of the common problems and possible solutions.
Problem Solutions
When the IBM® Security Privileged Identity Manager Server is not available.
  • Check the network connection.
  • Ensure that the managed resource is configured for shared access.
The managed resource is not configured for shared access for IBM Security Privileged Identity Manager.
  • Configure the managed resource for shared access with IBM Security Privileged Identity Manager.
  • Avoid logging with shared access credentials.
All the available shared access credentials are checked out.
  • Wait for a few minutes until there are available shared access credentials.
  • Find out the identity of the checked out credentials from the IBM Security Privileged Identity Manager. Ask the credential owner to check in their credentials.
There are no IBM Security Privileged Identity Manager Server credentials in the Wallet. Follow the instructions on the screen to enter the credentials. The credentials must have privileges to check out shared access credentials.
The account that is used to log on to the managed resource does not have correct entitlements on IBM Security Privileged Identity Manager. Use IBM Security Privileged Identity Manager to ensure that the account used to log on has correct permissions for the available shared access accounts.
Client application is not responding to keyboard or mouse input. For example: you cannot resize or move the window for the client application.

Verify that the Session Recorder service is:

  • Started on the client workstation.
  • Accessible from the client.

The behaviour of the client application is determined by the privileged identity management policies in AccessAdmin.
Client application is closed unexpectedly.
  • Verify that the Session Recorder service on the client workstation is started.
  • Verify that the Privileged Session Recorder Server is running and reachable from the client.
The behaviour of the client application is determined by the privileged identity management policies in AccessAdmin.
IBM Security Access Manager for Enterprise Single Sign-On ends the active process but does not check in the shared access credential when the following conditions occur:
  • A shared access credential is checked out from IBM Security Privileged Identity Manager through IBM Security Access Manager for Enterprise Single Sign-On.
  • The shared access credential is used by the user until the lease expires.

Since the shared access credential is not checked in, users cannot use the shared access credential unless IBM Security Privileged Identity Manager is configured to check in the shared access credential.
If you want users to use the shared access credential again:
  1. Open the IBM Security Privileged Identity Manager Console.
  2. Click Manage Shared Access > Configure Credential Default Settings.
  3. Select Notify violation and check in.
Parent topic: Troubleshooting and support

Feedback