Skip to main content

This is documentation for Caché and Ensemble. See the InterSystems IRIS version of this content.Opens in a new tab

Please read this important announcement about the future of Caché and Ensemble maintenanceOpens in a new tab. Contact your account team to migrate to InterSystems IRIS.

Emergency Access

Emergency Access

Caché provides a special emergency access mode that can be used under certain dire circumstances, such as if there is severe damage to security configuration information or if no users with the %Admin_Manage:Use or %Admin_Security:Use privileges are available (that is, if all users are locked out). Although Caché attempts to prevent this situation by ensuring that there is always at least one user with the %All role, that user may not be available or may have forgotten the password.

When Caché is running in emergency access mode, only a single user (called the emergency user) is permitted. This username does not have to be previously defined within Caché. In fact, even if the username is defined in Caché, the emergency user is conceptually a different user. The emergency username and password are only valid for the single invocation of emergency mode.

Other important points about emergency access mode:

  • %Service_Console, %Service_Terminal, and %Service_CSP are the only services enabled.

  • There is only access using Caché login — no other authentication mechanism is supported.

  • For the web applications that control the Portal (/csp/sys and /csp/sys/*), the standard login page (%CSP.Login.cls) is used during emergency access even if there is a custom login page available; this ensures that the emergency user has access to the Portal, since a custom login page may prevent authentication from occurring. For other web applications, if there is a custom login page, then that page is used during emergency login.

  • Two-factor authentication is disabled. This avoids any situation where two-factor authentication might prevent the emergency user from being able to authenticate.

Invoking Emergency Access Mode

To obtain emergency access to an instance of Caché, you must either have root or administrator privileges where the instance is running (if it was installed by root) or be the user who installed the instance (if it was not installed by root). This requirement limits emergency access to users who already have sufficient privileges to perform administrative operations on the instance, such as installing a new instance over the existing one.

Invoking Emergency Access Mode on Windows

To start Caché in emergency access mode:

  1. Start a command prompt, running it as an administrator. This can either be:

    • The Windows Command Prompt program. Right-click the Command Prompt choice in the menu and then choose Run as Administrator.

    • The Windows PowerShell. While you can run this as either an administrator or a user without extra privileges, this procedure assumes that you are running as an administrator; to run as a user without extra privileges, use the -verb runas argument when you invoke the command, which is described in PowerShell documentation.

  2. Go to the bin directory for your Caché installation.

  3. In that directory, invoke Caché at the command line using the appropriate switch and passing in the username and password for the emergency user. This depends on the command prompt that you are using:

    • For the Windows Command prompt, the command is:

      ccontrol start <instance> /EmergencyId=<username>,<password>

      This starts an emergency-mode Caché session with only one allowed user where:

      • <instance> specifies the instance being started in emergency mode

      • <username> is the sole user of the system

      • <password> is that user’s password

    • For the Windows PowerShell, the command is:

      start-process .\ccontrol.exe -ArgumentList "start <instance> /EmergencyId=<username>,<password>"

      This starts an emergency-mode Caché session with only one allowed user where:

      • <instance> specifies the instance being started in emergency mode

      • <username> is the sole user of the system

      • <password> is that user’s password

    Note:

    On Windows, unlike other operating systems, the EmergencyId switch is preceded by a slash (“/”).

    For example, at the instance MyCache, to start Caché in emergency mode with user Eugenia with the password 52601, the command would be:

    ccontrol start MyCache /EmergencyId=Eugenia,52601

    The only user who can then log in is the emergency user, using the appropriate password, such as:

    Username: Eugenia
Password: *****
Warning, bypassing system security, running with elevated privileges

Once Caché has started, you can start the Terminal from the Caché cube or run any CSP application. This provides access to the Management Portal and all character-based utilities. Using this access, you can change any settings as necessary and then restart Caché in its normal mode.

Invoking Emergency Access Mode on UNIX®, Linux, and Mac OS

To start Caché in emergency access mode, invoke Caché at the command line using the appropriate switch and passing in the username and password for the emergency user:

./ccontrol start <cache-instance-name> EmergencyId=<username>,<password>

This starts an emergency-mode Caché session with only one allowed user where:

  • <cache-instance-name> specifies the instance being started in emergency mode

  • <username> is the sole user of the system

  • <password> is <username>’s password

Note:

If going from one of these operating systems to Windows, remember that on Windows only, the EmergencyId switch is preceded by a slash (“/”).

For example, at the instance MyCache, to start Caché in emergency mode with user Eugenia with the password 5262001, the command would be:

./ccontrol start MyCache EmergencyId=Eugenia,52601

The only user who can then log in is the emergency user, using the appropriate password, such as:

Username: Eugenia
Password: *****
Warning, bypassing system security, running with elevated privileges

Once Caché has started, you can run Terminal or any CSP application. This provides access to the Management Portal and all character-based utilities. Using this access, you can change any settings as necessary and then restart Caché in its normal mode.

Emergency Access Mode Behavior

In emergency access mode, Caché has the following constraints and behaviors:

  • The emergency user is the only permitted user. Any attempt by another user to log in will fail.

  • The emergency user has the %ALL role.

  • Console, Terminal and CSP are the only services that are enabled. All other services are disabled. This does not affect the enabled or disabled status of services when Caché starts in non-emergency mode; only the current (emergency), in-memory information about services is affected.

  • For the enabled services, only authenticated access is permitted. Caché uses its own password authentication for the services, where the emergency access username and password must be used.

  • After emergency access login, Caché attempts to audit all events for the active process; Caché start-up proceeds even if this is not possible. Login failures in emergency access mode are not audited.

  • The emergency user can make changes to the Caché configuration, but these changes are not activated until the next time that Caché is started in normal (not emergency) mode. This is in contrast to the normal operation of Caché, in which configuration changes are primarily activated without restarting Caché.


Previous sectionEffect of Changes
FeedbackOpens in a new tab