The information you are about to copy is INTERNAL!
DO NOT share it with anyone outside Check Point.
Unable to delete an admin account or Discard / Publish disconnected sessions
| Solution ID |
sk123741 |
| Product |
Multi-Domain Management, Security Management |
| Version |
R80.10 |
| OS |
Gaia |
| Platform / Model |
All |
| Date Created |
27-Mar-2018
|
| Last Modified |
07-May-2019
|
Symptoms
- When trying to delete an admin via SmartConsole ('Permission & Administrator -> Administrators'), the following error is diplayed:
XXXX has open sessions. Deleting this administrator will discard and disconnect all his sessions.
If clicking "Discard & Delete", we get the following error::
“An internal error has occurred”
- Cannot Discard / Publish disconnected sessions ('Sessions -> View Sessions') and the following error is displayed:
An internal error has occurred
- In
cpm.elg file, the following is seen:
[Date/Time] ERROR infrastructure.logging.DefaultExceptionLoggerHandlerImpl [qtp-1058608691-574]: incident [0ac1837f-d920-4b8d-a5b9-10db356970eb]:
CpmGeneralException{base='com.checkpoint.management.is.exceptions.CpmIllegalArgumentException: Cannot login to a discarded session.', errorCode='CP_ERR_ILLEGAL_ARGUMENT', errorFamily='null', messageForUser='null', message='Cannot login to a discarded session.'}
- When trying to delete an admin using mgmt_cli, the following error is displayed:
code: "generic_err_object_deletion"
message: "Administrator XXXX cannot be deleted while he has open sessions."
- In
api.elg, the following is seen (when trying to delete using mgmt_cli):
[Date/Time] INFO com.checkpoint.management.web_api_is.utils.helpers.ApiCache.:25 [qtp-1583149493-30] - Cache created and initialized
[Date/Time] INFO com.checkpoint.management.web_api.web_services.WebApiEntryPoint.logRequestedCommandInfo:50 [qtp-1583149493-30] - Executing [delete-administrator] of version 1.1 (references 1)
[Date/Time] ERROR com.checkpoint.management.web_api.utils.WebApiCommandExceptionUtils.getErrorReply:219 [qtp-1583149493-30] -
com.checkpoint.web_services.faults.ObjectDeletionRemoteFault: Administrator XXXX cannot be deleted while he has open sessions.
Cause
There is a session aggregator used without an open work session for that admin.
Solution
|
Note: To view this solution you need to
Sign In
.
|
