Been there tried that already. Here is a snippet of the imstrace.log
2013-04-29 20:19:53,045, [main], (ManageSecretsCmd.java:470), trace.com.rsa.security.keymanager.tools.ManageSecretsCmd, ERROR, "was server name I blanked this out xxxxxx.xxxxxxxxx.xxx,,,,Fatal error
com.rsa.ims.security.keymanager.sys.InvalidPasswordException: Invalid password, failed to decrypt system key
Root cause: javax.crypto.BadPaddingException: Given final block not properly padded
at com.rsa.ims.security.lockbox.crypto.d.a(d.java:2)
at com.rsa.ims.security.lockbox.crypto.c.c(c.java:1)
at com.rsa.ims.security.lockbox.crypto.c.a(c.java:104)
at com.rsa.ims.security.lockbox.crypto.d.c(d.java:48)
at com.rsa.ims.security.lockbox.b.loadFields(b.java:245)
at com.rsa.security.keymanager.tools.ManageSecretsCmd.list(ManageSecretsCmd.java:604)
at com.rsa.security.keymanager.tools.ManageSecretsCmd.execute(ManageSecretsCmd.java:439)
at com.rsa.security.keymanager.tools.ManageSecretsCmd.main(ManageSecretsCmd.java:468)
Caused by: javax.crypto.BadPaddingException: Given final block not properly padded
at com.sun.crypto.provider.SunJCE_f.b(DashoA13*..)
at com.sun.crypto.provider.SunJCE_f.b(DashoA13*..)
at com.sun.crypto.provider.AESCipher.engineDoFinal(DashoA13*..)
at javax.crypto.Cipher.doFinal(DashoA13*..)
at com.rsa.ims.security.lockbox.crypto.b.b(b.java:13)
at com.rsa.ims.security.lockbox.crypto.d.a(d.java:36)
I have a question for my understanding. I've installed SSO several times for my lab and for customers. No where does it every ask to set a MASTER password unless it gets set the first time you assign a password for admin@system-domain. If that is the case the password never changed.