IronSphere Agent: check debug file shows Permission denied. with rc=416
Symptoms:
- Check is not displayed at the server system view, but PINGing the server from the lpar is successful.
- Check Status in SDSF CK panel is successful.
- Check debug file show the message: 'QIF8036E HTTPS SERVICE service_name FAILED. RC=416 REASONCODE=Permission Denied.
Description:
ironSphere Agent uses a certificate to encrypt connection to server over HTTPS. The certificate may be inserted, however, the agent user-id / LID / ACID is not authorized to read the certificate.
Solution:
Verify that the Health Checker user-id h=is authorized to FACILITY resource named IRR.DIGTCERT.LISTRING with READ permission. Depending on ESM configuration you may also authorize the user with READ access to RDATALIB profile <ringOwner>.<ringName>.LST.
Retry the check by entering "R" line command against the check in SDSF CK panel.