Multiple Top-Level Realms in Access Manager via AMconfig?
Is it possible to configure multiple top-level realms in Access Manager via AMconfig? It is not possible through the UI.
Hi!
How about this:
String adminDN = (String)AccessController.doPrivileged(new AdminDNAction());
String adminPwd = (String)AccessController.doPrivileged(new AdminPasswordAction());
adminToken = adminManager.createSSOToken(new AuthPrincipal(adminDN), adminPwd);
hth Chris
Similar Messages
-
Multiple top level package declarations
The "Programming Adobe ActionScript 3.0" states in chapter 4 "ActionScript Language and Syntax", "Packages and Namespaces", "Creating Packages" that you can declare at the top level of a package multiple variables, functions, and namespaces in addition to a single class as long as only one is declared "public".
However, in Flash when I declare a public class and any other variable or function either with the "internal" attribute or no attribute, I get this error:
5006: An ActionScript file can not have more than one externally visible definition: test.function1, test.Test
The package code is as follows:
package test
internal function function1():String
return "Function1()";
public class Test
The same thing happens if I replace the function with an internal variable declaration. According to the manual, any declaration with the "internal" attribute should not be externally visible outside the package. Only the "public" class declaration should be externally visible.
Can anyone clue me in as to why I get this error?That is not the situation described by the quoted manual section that I am trying to recreate.
It clearly says:
"In ActionScript 3.0, you use the package statement to declare a package, which means that you can also declare variables, functions, and namespaces at the top level of a package. You can even include executable statements at the top level of a package. If you do declare variables, functions, or namespaces at the top level of a package, the only attributes available at that level are public and internal, and only one package-level declaration per file can use the public attribute, whether that declaration is a class, variable, function, or namespace."
The data properties and class you have decleared are outside the package within the ActionScript file, and not at the top level of a package. The "public" attribute is not available outside the package at all.
What I wish to know is why the quoted internal declarations at the top level of the package generate the quoted error.
However, I am beginning to believe that the documentation is in error and that what it is actually describing IS the situation you just described. When the manual says "top level of the package", it really means "top level of the ActionScript file outside the package", and when it says "the only attributes available at that level are public and internal", it really mans "the only attribute available outside the package declaration is internal. At the top level of the package, only one declaration may be made, it must have the same identifier as the ActionScript file name, and it can have either the public or internal attribute. Code within the same file but outside the package declaration can not access an internal declaration in the package declaration."
Actually, the whole paragraph would need to be re-written to clarify the issue and to unambiguously distinguish between "top level of a package" and "top level of an ActionScript file outside the package declaration".
As a concrete example - two ActionScript files:
MCTest.as is saved in the same directory as MCTest.fla, and the document class of MCTest.fla is set to "MCTest".
package
trace("MCTest package code.");
import flash.display.MovieClip;
import test.Test;
public class MCTest
extends MovieClip
trace("MCTest class code.");
function MCTest()
trace("Created Class MCTest: " + Test.StaticMessage);
trace("MCTest outside package code");
Test.as is saved in a sub-directory called "test".
package test
trace("test.Test package code");
public class Test
public static const StaticMessage:String = "Test: Hello World!";
trace("test.Test class code");
var myField:String = "myField";
function myFunction():String
return "myFunction";
trace("test.Test outside package: " + myField + ", " + myFunction() + ", " + test.Test.StaticMessage);
The resultant trace output is:
MCTest class code.
MCTest package code.
MCTest outside package code
test.Test class code
test.Test package code
test.Test outside package: myField, myFunction, Test: Hello World!
Created Class MCTest: Test: Hello World!
It is interesting to note that the package and outside package code are executed AFTER the class code.
That seems to make more sense. You can only declare one class, variable, function, or namespace at the top level of a package with the same identifier as the file name, public or internal, and you can include executable code. At the top level of the ActionScript file outside the package declaration, you can only declare internal classes, variables, functions, and namespaces, and you can include executable code, none of which are within the package nor have access to any package internal declarations.
The problem, therefore, would seem to be an incorrect manual. Does anyone actually know if this is accurate and the intended behavior? -
How to avoid multiple top level navigation nodes ?
Dear portal experts,
If a user is assigned to multiple portal roles, which contain partially the same worksets, the user gets these worksets doubled in the top level navigation.
Can this be avoided ? The portal should check the user roles and show each workset only once.
Thanks,
JohannesHi,
you have to set Merge ID attribute to the worksets.
Regards,
Ladislav -
SetCursor use for multiple top level windows (JFrame)
Hello,
I have an application with many top level windows, most of which are running under a single
thread. I'm trying to implement a class to toggle the cursor (normal<->busy) for any window
that is present in the application.
I can't seem to get the cursor to change for any window other than the main window. I'm providing
below the class that's used to register the windows and set the cursors.
What am I missing?
import java.awt.Cursor;
import java.util.ArrayList;
import javax.swing.JComponent;
import javax.swing.RootPaneContainer;
public class AppWindows {
ArrayList<WinInfo> windows;
/** Creates a new instance of AppWindows */
public AppWindows() {
windows = new ArrayList<WinInfo>();
public void add(JComponent window, String title) {
WinInfo win = new WinInfo(window, title);
windows.add(win);
public void delete(JComponent window) {
windows.remove(window);
public void deleteAll() {
windows.clear();
public void setBusyStatus(boolean busy) {
for(int i=0; i<windows.size(); i++) {
JComponent j = windows.get(i).getWindow();
RootPaneContainer root = (RootPaneContainer)j.getTopLevelAncestor();
if(busy == true) {
root.getGlassPane().setCursor(Cursor.getPredefinedCursor(Cursor.WAIT_CURSOR));
root.getGlassPane().setVisible(true);
else {
root.getGlassPane().setCursor(Cursor.getDefaultCursor());
root.getGlassPane().setVisible(false);
class WinInfo {
private JComponent win;
private String title;
public WinInfo(JComponent win, String title) {
this.win = win;
this.title = title;
public JComponent getWindow() {
return win;
}BillI would very much like to know how to avoid this also!!!
-
Logging into access manager via http arguments
HI ,
I am looking to login into the access manager through some web applett, its like i want to pass my username and password in the form of arguments to the login url. I inted to do it for passing passwords between servers ( details are insignificant) . To explain more , i used to do this on oracle identtity server.
i Launched explorer with the arguments
iexplore <oracle IM URI>?username=xxx&pass=yyy
as a result i used to log in to the server.
the reason was oracle IM URI is a java applett that accepts username and password as html parameters.
My question is :
Is there any similar applett for access manager?
Any suggestions of what alternatives i can use ? i dont want to use the java API ,
regards
kimiYou can use so called zero-page login with AM auth-service.
However is only allowed with HTTP-POSTs and not HTTP-GETs.
This is for serucity reasons, if GETs could be used username and passwords would be logged by systems in their log files (proxies, deployment-container).
-Bernhard -
ADFS server pointing to multiple top level domains
Hi,
I have two separate Active Directory Forests setup in my environment (domainA.net and domainB.net) Each forest has a few child subdomains.
I would like one ADFS website to allow authentication for both AD forests in my environment.
Is there a way for me to configure that?
Please advise.
Thanks,If there's no forest trust between the two AD forests, then you'll need an additional AD FS installation in the forest where it doesn't currently exist. For example, if the AD FS instance exists in ForestB, then a separate AD FS instance is required in
Forest A.. from the AD FS setup in Forest B, the Forest A AD FS instance can be configured as a claims provider and Forest B is configured as a relying party on the Forest A instance.. In other words, you're building a circle of trust.. this can be via legacy
means (using a forest trust or two-way trust subject to your requirements) or via a federation trust using AD FS, via the claims provider approach I described... post back if you need more info..
http://blog.auth360.net -
Access Manager 7.1 Session Failover
Hello,
I am trying to do a session failover with access Manager 7.1.
My Infrastructure:
OS: Solaris 10
2 Solaris Servers dedicated to 4 LDAP instances (2 each)
2 Solaris Servers dedicated to 2 LDAP Proxy servers configured to access 4 LDAP instances.
2 Solaris Servers dedicated to 2 Sun Application Server 8.2 running 2 instances of Access Manager sharing the 4 LDAP instances through Proxy.
2 Solaris Servers dedicated to 2 instances of JMS servers (1 on each) with Access Manager Session DB configured. JMS is running on cluster mode.
1 Solaris server for Webserver 7.0 configured for Load Balancing (loadbalancer.xml).
Configuration:
2 instances of Access Manager on separate solaris boxes use the same LDAP instance(s).
Access Manager is configured for session failover using amsfoconfig as documented.
The Session failover instances where started as documented
1. Start session DB using amsfo script
2. Start the Access Manager instances (by Starting DAS)
3. Start Webserver
My Problem:
Session Failover does not work. The Amsession log throws
ERROR: JMQSessionRepository.save(): failed to save Session
java.lang.NullPointerException
at com.iplanet.dpro.session.jmqdb.PersistSession.setString(PersistSession.java:310)
at com.iplanet.dpro.session.jmqdb.JMQSessionRepository.save(JMQSessionRepository.java:357)
at com.iplanet.dpro.session.service.SessionService.saveForFailover(SessionService.java:2812)
AmSessionMonitor file continuously throws below error and fills up the disk (20 GB ) space quickly:
04/24/2007 04:28:13:450 PM EDT: Thread[amSessionMonitor,5,main]
WARNING: SessionMonitor runtime exception
java.lang.NullPointerException
at com.iplanet.dpro.session.service.SessionService.locateCurrentHostServer(SessionService.java:1762)
at com.iplanet.dpro.session.service.SessionService.getCurrentHostServer(SessionService.java:1731)
at com.iplanet.dpro.session.service.SessionMonitor.run(SessionMonitor.java:94)
JMS queue Log:
Sun Java(tm) System Message Queue 3.7
Sun Microsystems, Inc.
Version: 3.7 UR1 (Build 9-b)
Compile: Sun Jun 18 22:11:21 PDT 2006
Copyright (c) 2006 Sun Microsystems, Inc. All rights reserved.
SUN PROPRIETARY/CONFIDENTIAL. Use is subject to license terms.
This product includes code licensed from RSA Data Security.
================================================================================
Java Runtime: 1.5.0_09 Sun Microsystems Inc. /usr/jdk/instances/jdk1.5.0/jre
[18/Apr/2007:09:14:28 EDT] License: Sun Java(tm) System Message Queue 3.7 UR1 Enterprise Edition
[18/Apr/2007:09:14:29 EDT] IMQ_HOME=/
"log.txt" 725 lines, 61600 characters
Magic/Version: 469754818/301 Size: 116 Type: ACKNOWLEDGE(24)
Expiration: 0 Timestamp: 1177446120954
Source IP: 172.31.120.44(c0:ca:66:ec:a9:d5) Port: 60437 Sequence: 32
Property Offset: 76 Property Size: 0
Encryption: 0 Priority: 5
Flags: consumerID: 0
TransactionID: 0
MessageID: 32-172.31.120.44(c0:ca:66:ec:a9:d5)-60437-1177446120954
Properties: null
Message Body: 40 bytes [3052053123717449216:16-172.31.120.44(b1:6a:3:39:7d:6)-60434-1177446116385]
Internal Buffers (useDirect=false):
Fixed Header Buffer:java.nio.HeapByteBuffer[pos=0 lim=72 cap=72]
com.sun.messaging.jmq.jmsserver.util.BrokerException: Internal Error: Unable to complete processing acks: Unknown consumer [consumer:30520
53123717449216, type=NONE]
at com.sun.messaging.jmq.jmsserver.data.handlers.AckHandler.handleAcks(AckHandler.java:256)
at com.sun.messaging.jmq.jmsserver.data.handlers.AckHandler.handle(AckHandler.java:166)
at com.sun.messaging.jmq.jmsserver.data.PacketRouter.handleMessage(PacketRouter.java:146)
at com.sun.messaging.jmq.jmsserver.service.imq.IMQConnection.readData(IMQConnection.java:1856)
at com.sun.messaging.jmq.jmsserver.service.imq.IMQConnection.process(IMQConnection.java:816)
at com.sun.messaging.jmq.jmsserver.service.imq.OperationRunnable.process(OperationRunnable.java:141)
at com.sun.messaging.jmq.jmsserver.util.pool.BasicRunnable.run(BasicRunnable.java:459)
at java.lang.Thread.run(Thread.java:595)
[24/Apr/2007:16:22:05 EDT] [B1071]: Established cluster connection : testuidp02.dol.state.nj.us/172.31.120.45:7676 (aminstance)
[24/Apr/2007:16:23:00 EDT] [B1066]: Closing: [email protected]:57590->jms:60425 because "[B0061]: Client exited without closing con
nections". Count=1
[24/Apr/2007:16:24:37 EDT] [B1065]: Accepting: [email protected]:42435->jms:60425. Count=2
[24/Apr/2007:16:26:15 EDT] [B1066]: Closing: [email protected]:42435->jms:60425 because "[B0061]: Client exited without closing con
nections". Count=1
Access Manager via load balancer web server works fine with out session failover configuration.
I noticed through forums that Accessmanager 2005Q4 had similar problem and was fixed with a patch.
Will somebody please help who has done session failover with AM7.1?
Thanks
KrisYep, that was me struggling with 2005Q4 before they released a patch (120954-03 if I am not mistaken).
1. Have you configured your AM installation as a site?
2. Have you added a secondary configuration in the session tab?
A restart will be required after that. Try setting log levels to debug. When AM webserver comes up and brings the application live, you'll see information regarding the secondary configuration, and whether things are actually in place or not.
Hope this helps.
Ankush
http://www.iamcg.net -
How do I use CreateBookmarksFromGroupTree and NOT get a "temp_" for my top level?
I have a report that I have created that uses uses groups and I wanted export a PDF using the CreateBookmarksFromGroupTree option. While that works, I get an ugly top level bookmark name that starts with "temp_" then followed by two GUIDs "temp_13fef8e3-30ec-4bc5-ba77-b55d23c95e8f {87823BCB-7789-407C-8A7F-5096BE07A83E}".
So, how do I:
1) Get rid of this top level so it matches the Crystal Viewer (which has multiple top level bookmarks)
2) Put in a name of my own choosing as the top-level bookmark.
<!break>
Any help or suggestions would be appricated.
Thanks,
JimI would very much like to know how to avoid this also!!!
-
Login onto Oracle Access Manager HELP PLEASE!!!
Hi All,
I have a major problem, all of a sudden I am unable to log on to my Access Manager via the Web Console.
My OAM is using OVD for User Directory and AD as the configuration Directory.
When I try and logon using any user (LDAP mainly) it says "invalid credentials", I hit "Lost PW" button and returns the same message.
Has any one got any ideas, OVD seems ok, I can browse both my Active directories with it, my AD are avaliable (telnet port 389 ok)
I have enabled loggin on the OVD. It give me the following on the main server log. below is also the server exception log, sections are separated by a -------------.
Thanks inadvance
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active ip addresses.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active ip addresses.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active users.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active users.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active users.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:37,635] WARN - DoSManager: Found unbound connection from active users.[Session: cn=admin/192.168.200.75] [DoSManager]
[2008-03-19 18:05:44,322] INFO - DumpTransactions: SEARCH Operation: (Transaction#OC-AD.Dump Before.32)
BindDN: cn=admin
Base: dc=MyCompany,dc=ovd
Scope: 2
Filter: (&(objectclass=inetorgperson)(&(uid=dpapadopoulos)(|(obUserAccountControl=ACTIVATED)(!(obUserAccountControl=*)))))
TypesOnly: FALSE
Attrs: [cn] [WorkThread# 7]
[2008-03-19 18:05:44,322] INFO - DumpTransactions: SEARCH Operation: (Transaction#OC-AD.Dump After.32)
BindDN: cn=admin
Base: dc=MyCompany,dc=ovd
Scope: 2
Filter: (&(objectclass=user)(&(samaccountname=dpapadopoulos)(|(obUserAccountControl=ACTIVATED)(!(obUserAccountControl=*)))))
TypesOnly: FALSE
Attrs: [cn] [WorkThread# 7]
[2008-03-19 18:05:44,322] WARN - ConnectionHandle: Remote Server Failure:connection closed [WorkThread# 7]
[2008-03-19 18:05:44,322] INFO - DumpTransactions: SEARCH Results: (Transaction#OC-AD.Dump After.32) NULL [WorkThread# 7]
[2008-03-19 18:05:44,322] INFO - DumpTransactions: SEARCH Results: (Transaction#OC-AD.Dump Before.32) NULL [WorkThread# 7]
[2008-03-19 18:05:44,322] INFO - exceptionlog: SEARCH Results: (Transaction#OC-AD.Dump After.32) NULL [WorkThread# 7]
com.octetstring.vde.util.DirectoryException: LDAP Error 2 : No Remote Servers Available at com.octetstring.vde.backend.jndi.BackendJNDI.flushConnections(BackendJNDI.java:1820) at com.octetstring.vde.backend.jndi.ConnectionManager.flushConnections(ConnectionManager.java:64) at com.octetstring.vde.backend.jndi.ConnectionHandle.search(ConnectionHandle.java:367) at com.octetstring.vde.backend.jndi.BackendJNDI.get(BackendJNDI.java:1108) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:289) at com.octetstring.vde.chain.plugins.DumpTransactions.DumpTransactions.get(DumpTransactions.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.BasePlugin.get(BasePlugin.java:86) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.plugins.objectClass.ObjectClassMapper.get(ObjectClassMapper.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.BasePlugin.get(BasePlugin.java:86) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.plugins.DumpTransactions.DumpTransactions.get(DumpTransactions.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.PluginChain.runGet(PluginChain.java:188) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:425) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:380) at com.octetstring.vde.backend.AdapterServiceInterface.get(AdapterServiceInterface.java:560) at com.octetstring.vde.backend.BackendHandler.get(BackendHandler.java:707) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:282) at com.octetstring.vde.chain.plugins.AclCheckerPlugin.get(AclCheckerPlugin.java:322) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.PluginChain.runGet(PluginChain.java:188) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:425) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:380) at com.octetstring.vde.chain.GlobalServicesInterface.runGet(GlobalServicesInterface.java:205) at com.octetstring.vde.operation.SearchOperation.perform(SearchOperation.java:401) at com.octetstring.vde.MessageHandler.doSearch(MessageHandler.java:517) at com.octetstring.vde.MessageHandler.answerRequest(MessageHandler.java:136) at com.octetstring.vde.WorkThread.run(WorkThread.java:89) [2008-03-19 18:05:44,322] INFO - exceptionlog: SEARCH Results: (Transaction#OC-AD.Dump Before.32) NULL [WorkThread# 7]
com.octetstring.vde.util.DirectoryException: LDAP Error 2 : No Remote Servers Available at com.octetstring.vde.backend.jndi.BackendJNDI.flushConnections(BackendJNDI.java:1820) at com.octetstring.vde.backend.jndi.ConnectionManager.flushConnections(ConnectionManager.java:64) at com.octetstring.vde.backend.jndi.ConnectionHandle.search(ConnectionHandle.java:367) at com.octetstring.vde.backend.jndi.BackendJNDI.get(BackendJNDI.java:1108) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:289) at com.octetstring.vde.chain.plugins.DumpTransactions.DumpTransactions.get(DumpTransactions.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.BasePlugin.get(BasePlugin.java:86) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.plugins.objectClass.ObjectClassMapper.get(ObjectClassMapper.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.BasePlugin.get(BasePlugin.java:86) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.plugins.DumpTransactions.DumpTransactions.get(DumpTransactions.java:267) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.PluginChain.runGet(PluginChain.java:188) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:425) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:380) at com.octetstring.vde.backend.AdapterServiceInterface.get(AdapterServiceInterface.java:560) at com.octetstring.vde.backend.BackendHandler.get(BackendHandler.java:707) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:282) at com.octetstring.vde.chain.plugins.AclCheckerPlugin.get(AclCheckerPlugin.java:322) at com.octetstring.vde.chain.Chain.nextGet(Chain.java:298) at com.octetstring.vde.chain.PluginChain.runGet(PluginChain.java:188) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:425) at com.octetstring.vde.chain.PluginManager.runGet(PluginManager.java:380) at com.octetstring.vde.chain.GlobalServicesInterface.runGet(GlobalServicesInterface.java:205) at com.octetstring.vde.operation.SearchOperation.perform(SearchOperation.java:401) at com.octetstring.vde.MessageHandler.doSearch(MessageHandler.java:517) at com.octetstring.vde.MessageHandler.answerRequest(MessageHandler.java:136) at com.octetstring.vde.WorkThread.run(WorkThread.java:89)
If you have got this far then thanks for reading ;)Finally managed to solve the problem.
While creating the Join view adapter, we had to specify the binding adapter as OID instead of the database as we had done.
Changed the binding adapter to OID and can login to OAM console now!
:) -
Can not configure Access Manager
Hi all,
1. I istalled Sun java messaging server 6.
2. I edit amsamplesilent to prepare amsamplesilent.my:
# cd /opt/SUNWam/bin
#mv amsamplesilent amsamplesilent.my
3. I configure Access Manager:
#./amconfig -s amsamplesilent.my but get the following error:
# ./amconfig amsamplesilent.my
Usage: amconfig -s <silentinputfile>
./amconfig: Sourcing ./amutils
ln: cannot create /opt/SUNWam/lib/jaxrpc-spi.jar: File exists
chown: jaxrpc-spi.jar: No such file or directory
full install
./amdsconfig: Sourcing ./amutils
LD_LIBRARY_PATH is --- /usr/lib/mps/secv1:/usr/lib/mps/secv1:/usr/lib/mps/secv1:/opt/SUNWam/lib:/opt/SUNWam/ldaplib/ldapsdk
CLASSPATH is --- /opt/SUNWam/locale:/etc/opt/SUNWam/config:/opt/SUNWam/lib:/opt/SUNWam/lib/am_services.jar:/opt/SUNWam/lib/ldapjdk.jar:/usr/share/lib/mps/secv1/jss3.jar:/opt/SUNWam/lib/am_sdk.jar
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 3
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 4
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 5
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 6
ERROR : Loading of Access Manager schema into the Directory failed
Starting the tag swapping of the install.ldif and installExisting.ldif
ROOT_SUFFIX is dc=iplanet,dc=com
People_NM_ROOT_SUFFIX is People_dc=iplanet_dc=com
SERVER_HOST sample.red.iplanet.com
DIRECTORY_SERVER sample.red.iplanet.com
DIRECTORY_PORT 389
USER_NAMING_ATTR uid
ORG_NAMING_ATTR o
CONSOLE_DEPLOY_URI /amconsole
ORG_OBJECT_CLASS sunismanagedorganization
RS_RDN iplanet
USER_OBJECT_CLASS inetorgperson
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 3
ERROR : Configuring/Loading of the default DIT in the Directory Server failed
ldap_simple_bind: Can't connect to the LDAP server - No route to host
ldap_simple_bind: Can't connect to the LDAP server - No route to host
sleep 3
Warning : Plugins and Indexes already exist.
./amsvcconfig: Sourcing ./amutils
LD_LIBRARY_PATH is --- /usr/lib/mps/secv1:/usr/lib/mps/secv1:/usr/lib/mps/secv1:/opt/SUNWam/lib:/opt/SUNWam/ldaplib/ldapsdk
CLASSPATH is --- /opt/SUNWam/locale:/etc/opt/SUNWam/config:/opt/SUNWam/lib:/opt/SUNWam/lib/am_services.jar:/opt/SUNWam/lib/ldapjdk.jar:/usr/share/lib/mps/secv1/jss3.jar:/opt/SUNWam/lib/am_sdk.jar
ldap_simple_bind: Can't connect to the LDAP server - No route to host
Loading service schema XML files ...
Info 112: Entering ldapAuthenticate method!
Error 15: Cannot authenticate user.
LDAP authentication failed.
Error 9: Operation failed: Error 15: Cannot authenticate user.
Error occured while loading: /etc/opt/SUNWam/config/ums/ums.xml
./amws61config: Sourcing ./amutils
/opt/SUNWam/console.war: No such file or directory
current web app is applications
copying files from sunwamconsdk
Swapping tag swap in index.html files ...
Making amconsole.war
Successfully done making warfile ...
Deploying from /opt/SUNWam/web-src/applications (/opt/SUNWam/amconsole.war) to /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/applications for /amconsole
wdeploy deploy -u /amconsole -i https-sample.red.iplanet.com -v https-sample.red.iplanet.com -d /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/applications /opt/SUNWam/amconsole.war
[wdeploy] The war file name is /opt/SUNWam/amconsole.war
[wdeploy] Fatal error in parsing XML file ..Premature end of file.
[wdeploy] (-1, -1) in file null
[wdeploy] Error encountered while parsing /opt/SUNWwbsvr/https-sample.red.iplanet.com/config/server.xml
Failed deploying /amconsole
/opt/SUNWam/services.war: No such file or directory
current web app is services
Swapping tag swap in index.html files ...
Making amserver.war
Successfully done making warfile ...
Deploying from /opt/SUNWam/web-src/services (/opt/SUNWam/amserver.war) to /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/services for /amserver
wdeploy deploy -u /amserver -i https-sample.red.iplanet.com -v https-sample.red.iplanet.com -d /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/services /opt/SUNWam/amserver.war
[wdeploy] The war file name is /opt/SUNWam/amserver.war
[wdeploy] Fatal error in parsing XML file ..Premature end of file.
[wdeploy] (-1, -1) in file null
[wdeploy] Error encountered while parsing /opt/SUNWwbsvr/https-sample.red.iplanet.com/config/server.xml
Failed deploying /amserver
/opt/SUNWam/password.war: No such file or directory
current web app is password
Swapping tag swap in index.html files ...
Making ampassword.war
Successfully done making warfile ...
Deploying from /opt/SUNWam/web-src/password (/opt/SUNWam/ampassword.war) to /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/password for /ampassword
wdeploy deploy -u /ampassword -i https-sample.red.iplanet.com -v https-sample.red.iplanet.com -d /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/password /opt/SUNWam/ampassword.war
[wdeploy] The war file name is /opt/SUNWam/ampassword.war
[wdeploy] Fatal error in parsing XML file ..Premature end of file.
[wdeploy] (-1, -1) in file null
[wdeploy] Error encountered while parsing /opt/SUNWwbsvr/https-sample.red.iplanet.com/config/server.xml
Failed deploying /ampassword
/opt/SUNWam/introduction.war: No such file or directory
current web app is common
Swapping tag swap in index.html files ...
Making amcommon.war
Successfully done making warfile ...
Deploying from /opt/SUNWam/web-src/common (/opt/SUNWam/amcommon.war) to /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/common for /amcommon
wdeploy deploy -u /amcommon -i https-sample.red.iplanet.com -v https-sample.red.iplanet.com -d /opt/SUNWwbsvr/https-sample.red.iplanet.com/is-web-apps/common /opt/SUNWam/amcommon.war
[wdeploy] The war file name is /opt/SUNWam/amcommon.war
[wdeploy] Fatal error in parsing XML file ..Premature end of file.
[wdeploy] (-1, -1) in file null
[wdeploy] Error encountered while parsing /opt/SUNWwbsvr/https-sample.red.iplanet.com/config/server.xml
Failed deploying /amcommon
Checking if Web Server is already configed with Access Manager
Configuring Web Server
Mime type: 'type=text/vnd.wap.wml' already exists: Skipping ....
Mime type: 'type=image/vnd.wap.wbmp' already exists: Skipping ....
I tried again but I still get this error.
Any Ideas for this problem?
Thanks.ldap_simple_bind: Can't connect to the LDAP server - No route to host
i would consider this a fatal error.
The system cannot locate where your Directory Server is. "no route to host" means that it's trying to get to the host, but your networking isn't set up correctly, and it doesn't find any route to get to the specified host. -
Realms with different top-level domain
I'm testing OCS 10.1.2 and I am interested in setting up multiple realms.
Must all realms be in the same top-level domain? I see in the examples (like in Note Note:317434.1) names like this:
- Default realm created at install:
dc=us,dc=oracle,dc=com
- Additional realms created by the administrator post-install:
dc=uk,dc=oracle,dc=com
dc=ca,dc=oracle,dc=com
A more typical example for what we need would be:
dc=company,dc=co,dc=uk
dc=company,dc=no
dc=company,dc=de
Is this possible?What are the consequence of that? Any practical problems?
I see in Note 308682.1 that the top level of a top level domain is NULL. So maybe instead of world you can use an empty top level domain.
However, this document refers to mail and not OID. -
Non Active Directory users are not able to access sharepoint top level site
I have created a sharepoint group with read permission on top level site and I added the NON AD users to that group but the non ad users are unable to access top level site ,they are able to access remaining all subsites without any issue.I am facing
this issue only with NON AD users....I have checked the page layouts , all the layouts are in published mode.All the webparts and Lists on Default.aspx page has all users access permissions.Do I need to change anything in central administration
for this webapplication.Hi,
Could you please reproduce the issue and collect error information in ULS log for troubleshooting?
For your convenience:
http://blogs.msdn.com/b/opal/archive/2009/12/22/uls-viewer-for-sharepoint-2010-troubleshooting.aspx
Regards,
Rebecca Tu
TechNet Community Support
Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
[email protected] -
Portal 7.1 + Access Manager in realm mode
OS Solaris SPARC 9.
Components already installed: SJES Directory Server + SJES5 Web Server + SJES5 Access Manager (configured in realm mode with 'Configure now' option selected).
Web Server is listenin on port 8088.
It is said in "SJES5 Installation Guide for UNIX) that Portal Server supports Realm mode only if Access Manager is configured with Directory Server, with AMSDK configured for the data store.
I've installed AMSDK at the same time when installed AM itself. No postinstallition configuration was made.
But when I try to install Portal 7.1 (using SJES5 GUI installer, in 'configure now' mode) in realm mode, i receive following errors during installition:
Sun enterprise system 5 - installed
Java DB - installed (configure after install)
System Registry 3.1 installed (configure after install)
Java System Portal - installed (configuration failed)
Exploring /var/opt/SUNWportal/logs/config/portal.fabric.0.0.log shows following errors:
WARNING SJS Portal Server debug.com.sun.portal.fabric.config "ThreadID=10; ClassName=com.sun.portal.fabric.config.ValidatePortalInputData; MethodName=validateSharedComponents; " PSFB_CSPFC0301:The Directory PrivateLibDir is *not* being validated.
SEVERE SJS Portal Server debug.com.sun.portal.fabric.config "ThreadID=10; ClassName=com.sun.portal.fabric.config.ValidatePortalInputData; MethodName=checkPSAMInstallData; " PSFB_CSPFC0061:The Access Manager Configuration File /etc/opt/SUNWam/config/AMConfig.properties exists with required permissions.
SEVERE SJS Portal Server debug.com.sun.portal.fabric.util "ThreadID=10; ClassName=com.sun.portal.fabric.util.NetworkUtil; MethodName=isPortValid; " PSFB_CSPFU0011: The Port 8989 on server.org.com is being used.
SEVERE SJS Portal Server debug.com.sun.portal.fabric.util "ThreadID=10; ClassName=com.sun.portal.fabric.util.NetworkUtil; MethodName=isPortValid; " PSFB_CSPFU0011: The Port 8088 on server.org.com is being used.
SEVERE SJS Portal Server debug.com.sun.portal.fabric.config "ThreadID=10; ClassName=com.sun.portal.fabric.config.PortalConfigurator; MethodName=createPortalInstances; " PSFB_CSPFC0041:Failed invoking mbean action : create instance.
javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:435)"
" at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)"
" at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)"
" at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)"
" at com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)"
" at com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)"
" at com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)"
" at com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)"
" at com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)"
" at com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)"
" at com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)"
" at javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)"
" at javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)"
" at java.security.AccessController.doPrivileged(Native Method)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)"
" at com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)"
" at com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)"
" at com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)"
Caused by: com.sun.portal.admin.common.PSMBeanException: java.lang.SecurityException: authentication failure: Authentication failed: Error occurred while processing XML request.
Connection refused
com.sun.cacao.agent.impl.CacaoJmxConnectorProvider.newJMXConnector(CacaoJmxConnectorProvider.java:388)
javax.management.remote.JMXConnectorFactory.getConnectorAsService(JMXConnectorFactory.java:415)
javax.management.remote.JMXConnectorFactory.newJMXConnector(JMXConnectorFactory.java:307)
javax.management.remote.JMXConnectorFactory.connect(JMXConnectorFactory.java:247)
com.sun.portal.admin.common.util.AdminUtil.getConnector(AdminUtil.java:813)
com.sun.portal.admin.server.AdminServerUtil.getJMXConnector(AdminServerUtil.java:81)
com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:549)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:585)
com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)
com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)
com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)
com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)
com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)
com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)
com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)
com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)
com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)
com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)
com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)
javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)
javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)
java.security.AccessController.doPrivileged(Native Method)
javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)
javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)
com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)
com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)
com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)
" at com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:564)"
" at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)"
" at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)"
" at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)"
" at java.lang.reflect.Method.invoke(Method.java:585)"
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)"
" ... 18 more"
[# 2007-06-14T19:35:27.195+0400 SEVERE SJS Portal Server debug.com.sun.portal.fabric.config "ThreadID=10; ClassName=com.sun.portal.fabric.config.PortalConfigurator; MethodName=configurePortal; " PSFB_CSPFC0034:Encountered Exception while configuring the Portal
com.sun.portal.fabric.tasks.ConfigurationException: javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.portal.fabric.config.PortalConfigurator.createPortalInstances(PortalConfigurator.java:1314)"
" at com.sun.portal.fabric.config.PortalConfigurator.configurePortal(PortalConfigurator.java:842)"
" at com.sun.portal.fabric.config.ConfigurePortal.main(ConfigurePortal.java:189)"
Caused by: javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:435)"
" at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)"
" at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)"
" at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)"
" at com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)"
" at com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)"
" at com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)"
" at com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)"
" at com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)"
" at com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)"
" at com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)"
" at javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)"
" at javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)"
" at java.security.AccessController.doPrivileged(Native Method)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)"
" at com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)"
" at com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)"
" at com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)"
Caused by: com.sun.portal.admin.common.PSMBeanException: java.lang.SecurityException: authentication failure: Authentication failed: Error occurred while processing XML request.
Connection refused
com.sun.cacao.agent.impl.CacaoJmxConnectorProvider.newJMXConnector(CacaoJmxConnectorProvider.java:388)
javax.management.remote.JMXConnectorFactory.getConnectorAsService(JMXConnectorFactory.java:415)
javax.management.remote.JMXConnectorFactory.newJMXConnector(JMXConnectorFactory.java:307)
javax.management.remote.JMXConnectorFactory.connect(JMXConnectorFactory.java:247)
com.sun.portal.admin.common.util.AdminUtil.getConnector(AdminUtil.java:813)
com.sun.portal.admin.server.AdminServerUtil.getJMXConnector(AdminServerUtil.java:81)
com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:549)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:585)
com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)
com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)
com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)
com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)
com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)
com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)
com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)
com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)
com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)
com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)
com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)
javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)
javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)
java.security.AccessController.doPrivileged(Native Method)
javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)
javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)
com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)
com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)
com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)
" at com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:564)"
" at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)"
" at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)"
" at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)"
" at java.lang.reflect.Method.invoke(Method.java:585)"
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)"
" ... 18 more"
[# 2007-06-14T19:35:27.792+0400 SEVERE SJS Portal Server debug.com.sun.portal.fabric.config "ThreadID=10; ClassName=com.sun.portal.fabric.config.ConfigurePortal; MethodName=main; " PSFB_CSPFC0014:Failed configuring Portal Server!!
com.sun.portal.fabric.tasks.ConfigurationException: com.sun.portal.fabric.tasks.ConfigurationException: javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.portal.fabric.config.PortalConfigurator.configurePortal(PortalConfigurator.java:849)"
" at com.sun.portal.fabric.config.ConfigurePortal.main(ConfigurePortal.java:189)"
Caused by: com.sun.portal.fabric.tasks.ConfigurationException: javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.portal.fabric.config.PortalConfigurator.createPortalInstances(PortalConfigurator.java:1314)"
" at com.sun.portal.fabric.config.PortalConfigurator.configurePortal(PortalConfigurator.java:842)"
" ... 1 more"
Caused by: javax.management.MBeanException: Exception thrown in operation createAndFinalizeInstance
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:435)"
" at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)"
" at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)"
" at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)"
" at com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)"
" at com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)"
" at com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)"
" at com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)"
" at com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)"
" at com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)"
" at com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)"
" at javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)"
" at javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)"
" at java.security.AccessController.doPrivileged(Native Method)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)"
" at javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)"
" at com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)"
" at com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)"
" at com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)"
Caused by: com.sun.portal.admin.common.PSMBeanException: java.lang.SecurityException: authentication failure: Authentication failed: Error occurred while processing XML request.
Connection refused
com.sun.cacao.agent.impl.CacaoJmxConnectorProvider.newJMXConnector(CacaoJmxConnectorProvider.java:388)
javax.management.remote.JMXConnectorFactory.getConnectorAsService(JMXConnectorFactory.java:415)
javax.management.remote.JMXConnectorFactory.newJMXConnector(JMXConnectorFactory.java:307)
javax.management.remote.JMXConnectorFactory.connect(JMXConnectorFactory.java:247)
com.sun.portal.admin.common.util.AdminUtil.getConnector(AdminUtil.java:813)
com.sun.portal.admin.server.AdminServerUtil.getJMXConnector(AdminServerUtil.java:81)
com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:549)
sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
java.lang.reflect.Method.invoke(Method.java:585)
com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)
com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)
com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)
com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)
com.sun.jdmk.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:203)
com.sun.jdmk.interceptor.MBeanServerInterceptorWrapper.invoke(MBeanServerInterceptorWrapper.java:512)
com.sun.portal.admin.server.PortalServerLoggingInterceptor.invoke(PortalServerLoggingInterceptor.java:422)
com.sun.cacao.agent.DispatchInterceptor.invoke(DispatchInterceptor.java:662)
com.sun.cacao.agent.auth.impl.AccessControlInterceptor.invoke(AccessControlInterceptor.java:618)
com.sun.jdmk.JdmkMBeanServerImpl.invoke(JdmkMBeanServerImpl.java:764)
com.sun.cacao.common.instrum.impl.InstrumDefaultForwarder.invoke(InstrumDefaultForwarder.java:106)
javax.management.remote.generic.ServerIntermediary.handleRequest(ServerIntermediary.java:280)
javax.management.remote.generic.ServerIntermediary$PrivilegedRequestJob.run(ServerIntermediary.java:951)
java.security.AccessController.doPrivileged(Native Method)
javax.management.remote.generic.ServerIntermediary$RequestHandler.handleMBSReqMessage(ServerIntermediary.java:727)
javax.management.remote.generic.ServerIntermediary$RequestHandler.execute(ServerIntermediary.java:629)
com.sun.jmx.remote.generic.ServerSynchroMessageConnectionImpl$RemoteJob.run(ServerSynchroMessageConnectionImpl.java:249)
com.sun.jmx.remote.opt.util.ThreadService$ThreadServiceJob.run(ThreadService.java:208)
com.sun.jmx.remote.opt.util.JobExecutor.run(JobExecutor.java:59)
" at com.sun.portal.fabric.mbeans.Portal.createAndFinalizeInstance(Portal.java:564)"
" at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)"
" at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)"
" at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)"
" at java.lang.reflect.Method.invoke(Method.java:585)"
" at com.sun.jmx.mbeanserver.StandardMetaDataImpl.invoke(StandardMetaDataImpl.java:414)"
" ... 18 more"
May the problem be that AMSDK need additional configuration for datastore?Yes, copy config is enabled in all organisations.
I also tried to create an ldap data store instead of amsdk, but same behavior.
I have "fixed" the issue through a hack now by creating my own ldap login module, simply copied the original one and replaced LDAPPrincipal with my own version. It returns now a correct dn for the user in portal instead of the username only.
Works this way. Alas, it is just a hack...
As far as I can see, the problem is in the IDRepository. Its somewhat:
If (username is a DN) return username;
else return UniversalID;
This universal ID is then used by ps to get desktop information and since it is not a valid dn in ldap the desktop servlet cannot proceed...
I guess the problem does not appear in your environment. Maybe it was introduced with update 1? Do you use update 2?
Thanks, Chris -
Do I have to configure realm policy in Access Manager for IDM SPML Request
Hi all,
I wanted to run a SPML request from my application to the IDM which is presently protected by an AM server. Somehow, I get the following error, while I run a search using SpmlClient:
org.openspml.util.SpmlException: Unsupported response content type "text/html", must be: "text/xml".
Do I have to set a policy in Sun Access manager for the realm? Guys, pls help.
Thanks,
Aneesh.> I believe as long as you have access to the above two you can turn the CA off if you want.
Enterprise CAs are not intended to be offline. Therefore, you should not turn off them. If these root CAs issue certificates only to subordinate CAs, then you should consider to implement offline Standalone (not Enterprise) Root CAs.
> I believe the location of the CRL is detailed in the CDP which is detailed on the Certs issued but a given CA, so the client can look in the Cert and see what it states about the CDP and thereby get the list of revoked certs.
this is correct.
> to place its CDP at a location other than the default location in case it overwrites the existing CRL at the default location
no, CDP locations should be defined in the post-installation script.
> does the fully qualified X500 name of the CDP include the CA Name (and therefore be unique) and it will not over write the original
yes, LDAP URL includes CA server's NetBIOS name to differentiate between CAs.
My weblog: en-us.sysadmins.lv
PowerShell PKI Module: pspki.codeplex.com
PowerShell Cmdlet Help Editor pscmdlethelpeditor.codeplex.com
Check out new: SSL Certificate Verifier
Check out new:
PowerShell FCIV tool. -
Oracle Access manager 10.1.4 (coreid) multiple authentication for same URL
I am evaluating oracle access manager hence new to this product.
I have a requirement where i have a /wps URL.
Users coming externally go through reverse proxy server to the final IIS web server. Internal user access IIS directly.
/wps should be protected by reverse proxy using forms authentication
while IIS server also protect /wps but should use basic authentication.
Looks like policy is shared by all webgates so i can define one authentication method for /wps.
Comparing this with CA Siteminder each agent have their own URLs to protect and so two agents can protect the same URL but with different authentication method. The single signon works as the protection level is same.I have not done what you are speaking of; so I would assume that Boland is correct. One thing that you may want to consider is making the external users log into another resource before they hit the /wps. If the other resource is forms protected and at the same authentication level (number on auth scheme), then they can hit the external login resource, get their OBSSO cookie, then slide right thru the basic authentication request of the current policy domain.
Another idea would be to get a little more granular with your current policy domain. Have a file that's protected with forms auth in your policy domain that the external users authenticate to. Remember, this could be as simple as a dummy page that just does an HTTP redirect.
Good luck.
--Aaron
Maybe you are looking for
-
Need help in transferring data from flatfiles to SAP R/3 tables
Hi, I need to *transfer data in the flatfiles (NON SAP SYSTEM) to SAP R/3 tables*. Can we do it with a help of program ? Please help me out Thanks and regards, Shiva shekar k
-
Sending mail to LOTUS NOTES inbox.
Hi all, I am working on WORKFLOWS and i need to send a mail to lotus notes inbox. I have got the function module to send the mail.I Created a method for sending the mail. But Where and how to impletement this method in the work flow. Please through s
-
Itunes font changed in addition to desktop icons...
See other message
-
IMac freezing after Mountain Lion Upgrade
After upgrading my iMac to Mountain Lion it is freezing at least one a day. Sometimes the screen get messed up right before getting frozen, something like this video (from another guy), but they move from top to bottom to me. I never had this problem
-
ITunes crashing when attempting to "download all" podcasts
Operating System: Windows 8.1 Professional 64 Processor: Intel Core i7-3820 3.6GHz Installed Memory; 16GB Hard drive: Samsung SSD 840 EVO 750GB (529 GB free) Software version: iTunes 12.1.14 64-bit As iTunes default setting appears to be to deleting