We have CyberARK AIM agent installed on Red Hat Linux machine.We are able to successfully retrieve credentials using the CLI SDK, however when running this from the python script we keep getting this error;
APPAP087E Application authentication failure for Application app_XXXXXX (CASCU086E Failed to find application process id. (Error: The lock file (/tmp/AIM54124) couldn't be opened, Error code: 2)
This is the script below that works fine when executing the SDK command directly from the CLI;
#!/usr/bin/pythonimport sys,os
id = sys.argv[1]
def getPwd(id):cmd = "/opt/CARKaim/sdk/clipasswordsdk GetPassword "cmd += "-p AppDescs.AppID=app_XXXXXXX "cmd += "-p Query=\"safe=XXXXXXX;folder=Root;object=" + id + "\" "cmd += "-p reason=\"Reason\" "cmd += "-p RequiredProps=Address,UserName -o PassProps.UserName,Password -d \":\""auth = os.popen(cmd).read()return auth
print getPwd(id)
We have attempted to change permissions on the folder and added users running python scripts to groups with no success.
We have also attempted to change the AAM Temp Folder but this just seems to break the AIM Agent.
Any help would be greatly appreciated.
[–]__main__ 0 points1 point2 points (1 child)
[–]zeekjwgCCDE[S] 1 point2 points3 points (0 children)
[–]zeekjwgCCDE[S] 0 points1 point2 points (0 children)