Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Deep Security Manager service cannot start after changing the SQL database credentials

    • Updated:
    • 10 May 2019
    • Product/Version:
    • Deep Security 10.0
    • Deep Security 11.0
    • Deep Security 9.6
    • Platform:
    • N/A N/A
Summary

Some users use their domain admin account to connect to the Deep Security Manager SQL database. After modifying the database credentials by editing the dsm.properties file, the service failed to start.

Details
Public

The issue may have been caused by failed authentication due to these parameters: database.SqlServer.authenticationScheme=JavaKerberos and database.SqlServer.integratedSecurity=true.

To confirm the cause of the issue, review the server0.log under the Deep Security Manager's installation directory and check if it shows the following:

WARNING: ThID:16|TID:0|TNAME:Primary|UID:-1|UNAME:|Unable to connect to the database. Retrying in 10 seconds.  com.microsoft.sqlserver.jdbc.SQLServerException: Cannot login with Kerberos principal sa, check your credentials. Kerberos Login failed: Integrated authentication failed. ClientConnectionId:xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx due to javax.security.auth.login.LoginException (KrbException: Cannot locate default realm)

To resolve the issue:

  1. Go to Start > Run then type "services.msc".
  2. Stop the Trend Micro Deep Security Manager service.
  3. Go to the C:\Program Files\Trend Micro\Deep Security Manager\webclient\webapps\ROOT\WEB-INF folder and open the dsm.properties file.
  4. Change "database.SqlServer.integratedSecurity=true" to "database.SqlServer.integratedSecurity=false".
  5. Start the Trend Micro Deep Security Manager service.
Premium
Test Now
Internal
Rating:
Category:
Troubleshoot
Solution Id:
1122627
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.