Oracle.security.idm.OperationFailureException in ucm server logs

Similar Messages

• Oracle.security.idm.objectnotfoundexception

  Hi mates,
  We are using MS ActiveDirectory in the backed as LDAP store, have configured the AD Authenticator Provider as 1st in the Provider sequence of Security Realms.
  There is a spaces instance running and hosting multiple space, and the wcsdoc service of webcenter space to mapp the space to the Windows explorer.
  Now when trying to open a word document. In the document task pane of MS Office, we go to members tab and click on the Add member link.
  The dialog box opens up asking user id or mail id of the user to be added, i provide the user id and try searching the user and also selected the Space role to be assigned to the user. The user details like Display Name,Mail idand user name appears on clicking next.
  In the new dialog box when i click on finish id gives an error saying:
  "Unable to add new users.Server returned the following error-oracle.security.idm.objectnotfoundexception-No user found matching the criteria"
  Any ideas ?
  Thanks,
  Katherine

  Is that an application hosted on Weblogic? If so, how many identity providers did you configure? If you configured multiple, make sure the controlflag is set to "SUFFICIENT".
  Also, in which logfile did you find those errors?
  Thanks in advance!
  Regards,
  Jeff

• Where is the .jar file that contain this package oracle.security.idm

  Dear Everybody
  Could you tell me where is the .jar file that contain this package
  oracle.security.idm
  Thanks for your help

  Hi,
  check jdeveloper_home\jdeveloper_10133_<version>\jlib\identitystore.jar
  Frank

• Modifying Identity for oracle.security.idm.RoleProfile

  Hello. In the documentation: http://docs.oracle.com/cd/E12839_01/core.1111/e10043/devuserole.htm#autoId36 it is written that we can modify the Property by using oracle.security.idm.ModProperty: http://docs.oracle.com/cd/E24001_01/apirefs.1111/e14658/oracle/security/idm/ModProperty.html class. From the example shown there we can modify property for oracle.security.idm.UserProfile: http://docs.oracle.com/cd/E16340_01/apirefs.1111/e14658/oracle/security/idm/UserProfile.html. But I am unable to setProperty for oracle.security.idm.RoleProfile: http://docs.oracle.com/cd/E15523_01/apirefs.1111/e14658/oracle/security/idm/RoleProfile.html class, since there is no such method defined.
  How can I modify property for role. Can anyone show me an example or point to me into right direction?
  Thanks in advance.
  Regards.
  Tapas.

  I may be found a solution. The interface oracle.security.idm.RoleProfile extends oracle.security.idm.Role and the oracle.security.idm.spi.AbstractRoleProfile implements oracle.security.idm.RoleProfile, in turns oracle.security.idm.spi.AbstractRoleProfile is an abstract class and this class is extended by following three classes:
  1. oracle.security.idm.providers.stdldap.LDRole,
  2. oracle.security.idm.providers.libovd.LibOVDRole and
  3. oracle.security.idm.util.RoleProfileValueObject
  All of them has setProperty(ModProperty modProp) method defined within themselves. Among them the oracle.security.idm.util.RoleProfileValueObject class throws oracle.security.idm.OperationNotSupportedException from setProperty(ModProperty modProp) method and it does not do anything.
  In my application I need to find which one is the concrete implementation of oracle.security.idm.RoleProfile, so that I can proceed further. Before Monday I will not be able to do that. I guess it will work.
  I need to break the source code. Don't know whether or not is is illegal. But I didn't have any other options. The documentation lacks in many places. Even the javadoc of the interface oracle.security.idm.RoleProfile does not mention the name of implemented classes of it.

• Algorithm 'AES' has expired  exception while starting UCM server

  Hi,
  I am using Oracle UCM11g. While starting UCM server i am getting following exception.
  Error encountered encrypting the field 'JdbcPassword' with scope 'system'. The decryption key for category 'db' and encoding type 'AES' is missing. [ Details ]
  An error has occurred. The stack trace below shows more information.
  !csEncryptPasswordError,JdbcPassword,system!csDecryptKeyMissing,db,AES
  intradoc.data.DataException: !csDecryptKeyMissing,db,AES
  at intradoc.conversion.SecurityObjects.decryptWithFlags(SecurityObjects.java:350)
  at intradoc.conversion.SecurityObjects.decrypt(SecurityObjects.java:292)
  at intradoc.conversion.SecurityObjects.updatePassword(SecurityObjects.java:1132)
  at intradoc.conversion.SecurityObjects.updateExpiredPasswords(SecurityObjects.java:1036)
  at intradoc.conversion.CryptoPasswordUtils.updateExpiredPasswords(CryptoPasswordUtils.java:275)
  at intradoc.server.IdcSystemLoader.managePasswords(IdcSystemLoader.java:3125)
  at intradoc.server.IdcSystemLoader.finishInit(IdcSystemLoader.java:397)
  at intradoc.server.IdcSystemLoader.init(IdcSystemLoader.java:336)
  at intradoc.server.IdcServerManager.init(IdcServerManager.java:120)
  at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:624)
  at intradoc.idcwls.IdcServletRequestUtils.initializeServer(IdcServletRequestUtils.java:455)
  at intradoc.idcwls.IdcIntegrateWrapper.initializeServer(IdcIntegrateWrapper.java:102)
  at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
  at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
  at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
  at java.lang.reflect.Method.invoke(Method.java:597)
  at idcservlet.common.IdcMethodHolder.invokeMethod(IdcMethodHolder.java:87)
  at idcservlet.common.ClassHelperUtils.executeMethodEx(ClassHelperUtils.java:305)
  at idcservlet.common.ClassHelperUtils.executeMethodWithArgs(ClassHelperUtils.java:278)
  at idcservlet.ServletUtils.initializeContentServer(ServletUtils.java:1242)
  at idcservlet.ServletUtils.startAndConfigureServer(ServletUtils.java:542)
  at idcservlet.ServletUtils.initializeAllServers(ServletUtils.java:455)
  at idcservlet.IdcFilter.initContentServer(IdcFilter.java:132)
  at idcservlet.IdcFilter.init(IdcFilter.java:124)
  at weblogic.servlet.internal.FilterManager$FilterInitAction.run(FilterManager.java:332)
  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)
  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:120)
  at weblogic.servlet.internal.FilterManager.loadFilter(FilterManager.java:98)
  at weblogic.servlet.internal.FilterManager.preloadFilters(FilterManager.java:59)
  at weblogic.servlet.internal.WebAppServletContext.preloadResources(WebAppServletContext.java:1876)
  at weblogic.servlet.internal.WebAppServletContext.start(WebAppServletContext.java:3153)
  at weblogic.servlet.internal.WebAppModule.startContexts(WebAppModule.java:1508)
  at weblogic.servlet.internal.WebAppModule.start(WebAppModule.java:482)
  at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
  at weblogic.application.internal.flow.ScopedModuleDriver.start(ScopedModuleDriver.java:200)
  at weblogic.application.internal.flow.ModuleListenerInvoker.start(ModuleListenerInvoker.java:247)
  at weblogic.application.internal.flow.ModuleStateDriver$3.next(ModuleStateDriver.java:425)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.flow.ModuleStateDriver.start(ModuleStateDriver.java:119)
  at weblogic.application.internal.flow.StartModulesFlow.activate(StartModulesFlow.java:27)
  at weblogic.application.internal.BaseDeployment$2.next(BaseDeployment.java:636)
  at weblogic.application.utils.StateMachineDriver.nextState(StateMachineDriver.java:52)
  at weblogic.application.internal.BaseDeployment.activate(BaseDeployment.java:205)
  at weblogic.application.internal.EarDeployment.activate(EarDeployment.java:58)
  at weblogic.application.internal.DeploymentStateChecker.activate(DeploymentStateChecker.java:161)
  at weblogic.deploy.internal.targetserver.AppContainerInvoker.activate(AppContainerInvoker.java:79)
  at weblogic.deploy.internal.targetserver.BasicDeployment.activate(BasicDeployment.java:184)
  at weblogic.deploy.internal.targetserver.BasicDeployment.activateFromServerLifecycle(BasicDeployment.java:361)
  at weblogic.management.deploy.internal.DeploymentAdapter$1.doActivate(DeploymentAdapter.java:51)
  at weblogic.management.deploy.internal.DeploymentAdapter.activate(DeploymentAdapter.java:200)
  at weblogic.management.deploy.internal.AppTransition$2.transitionApp(AppTransition.java:30)
  at weblogic.management.deploy.internal.ConfiguredDeployments.transitionApps(ConfiguredDeployments.java:240)
  at weblogic.management.deploy.internal.ConfiguredDeployments.activate(ConfiguredDeployments.java:169)
  at weblogic.management.deploy.internal.ConfiguredDeployments.deploy(ConfiguredDeployments.java:123)
  at weblogic.management.deploy.internal.DeploymentServerService.resume(DeploymentServerService.java:180)
  at weblogic.management.deploy.internal.DeploymentServerService.start(DeploymentServerService.java:96)
  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:207)
  at weblogic.work.ExecuteThread.run(ExecuteThread.java:176)
  Can anybody please tell me how to resole this problem.
  Thanks and regards,
  Nitin Anande

  Hi,
  Please find the following entries of config.cfg and intradoc.cfg.
  Config.cfg
  +<?cfg jcharset="Cp1252"?>+
  +#Server System Properties+
  IDC_Name=N60906016200
  IdcProductName=idccs
  InstanceMenuLabel=N60906016200
  InstanceDescription=Instance N60906016200
  SocketHostAddressSecurityFilter=127.0.0.1|0:0:0:0:0:0:0:1
  +#Database Variables+
  DatabaseType=other
  JdbcDriver=
  JdbcUser=
  JdbcPassword=managed
  JdbcPasswordEncoding=managed
  DatabasePreserveCase=0
  SystemDatabase:DataSource=CSDS
  SystemDatabase:UseDataSource=true
  +#Internet Variables+
  HttpServerAddress=N609060:16200
  MailServer=mail
  SysAdminAddress=[email protected]
  HttpRelativeWebRoot=/cs/
  UseSSL=No
  +#General Option Variables+
  IsAutoNumber=Yes
  AutoNumberPrefix=N6090601620
  +#Additional Variables+
  registerStartMenuActions=1
  FileEncoding=UTF8
  WebServer=javaAppServer
  IntradocServerPort=4444
  intradoc.cfg
  +<?cfg jcharset="Cp1252"?>+
  +#Server System Properties+
  IDC_Id=UCM_server1
  +#Server Directory Variables+
  IdcHomeDir=C:/APPS/oracle/MIDDLE~1/Oracle_ECM1/ucm/idc/
  AppServerHome=C:/APPS/oracle/MIDDLE~1/WLSERV~1.3/
  DomainHome=C:/APPS/oracle/MIDDLE~1/USER_P~1/domains/ecm_domain/
  FmwDomainConfigDir=C:/APPS/oracle/MIDDLE~1/USER_P~1/domains/ecm_domain/config/fmwconfig/
  AppServerJavaHome=C:/APPS/oracle/MIDDLE~1/JDK160~1/jre/
  AppServerJavaUse64Bit=false
  IntradocDir=C:/APPS/oracle/MIDDLE~1/USER_P~1/domains/ecm_domain/ucm/cs/
  VaultDir=C:/APPS/oracle/MIDDLE~1/USER_P~1/domains/ecm_domain/ucm/cs/vault/
  WeblayoutDir=C:/APPS/oracle/MIDDLE~1/USER_P~1/domains/ecm_domain/ucm/cs/weblayout/
  Thanks a lot.

• Java.security.AccessControlException: access denied (oracle.security.jazn.J

  Hi All.
  I am calling the getIdentityStoreFactory() method in the IdentityStoreFactoryBuilder class and I am getting the following error:
  oracle.security.idm.ConfigurationException: java.security.AccessControlException: access denied (oracle.security.jazn.JAZNPermission getOC4JIntegrationData)
  Any ideas what is going on and any possible fixes?
  thanks
  james

  I will move it to the OC4j and J2ee forum.
  Thanks for bring it to my attention.
  Message was edited by:
  user480263

• The server (UCM server name) at IDC Security /oracleUCM/idcplg requires a username and passowrd.

  Hi ,
  I am getting the prompt asking for username and passoword whenever trying to login to UCM. Please find the details as given below. I am using UCM 10gR3 with Apache server and database is oracle 11g.
  The server at IDC Security /oracleUCM/idcplg requires a username and passowrd.
  warning: This server is requesting that your username and password be sent in an insecure manner(basic authentication without a secure connection)
  Can anyone please help me out to resolve this issue.
  Thanks,
  Prangya

  Hi,
  It’s not leading to UCM Server Login page. I supposed to give the user name and password in the UCM Server Login page but before that its asking for the username and password and even after giving the user name and password also it’s not taking. It keeps on asking for the user name and password. Can you please help me out on this.
  Thanks.

• UCM server starting up slow (oracle.wsm.resources.policyaccess WSM-06212)

  Lately I've been looking into WebCenter Content customization. My efforts are being delayed however by the frequent restarts required to evaluate my work effort.
  I found the startup goes a bit faster when I disable diagnostics in the WLS console for my locally installed managed UCM server. However, of the total time (starting up takes roughly 3-4 minutes) it spends roughly 2-3 minutes on generating a lot of warnings about policy access:
  <18-jul-2012 14:21:04 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06212> <An instance of the interface oracle.wsm.policymanager.IUsageTracker b
  ean for a remote repository was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context "ResourcePatter
  n [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:21:15 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06212> <An instance of the interface oracle.wsm.policymanager.IDocumentManage
  r bean for a remote repository was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context "ResourcePat
  tern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:21:25 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06210> <An instance of the interface oracle.wsm.policymanager.IUsageTracker b
  ean for the local repository at path "" was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context "Re
  sourcePattern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:21:36 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06210> <An instance of the interface oracle.wsm.policymanager.IDocumentManage
  r bean for the local repository at path "" was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context
  "ResourcePattern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:21:47 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06210> <An instance of the interface oracle.wsm.policymanager.IUsageTracker b
  ean for the local repository at path "" was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context "Re
  sourcePattern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:21:58 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06210> <An instance of the interface oracle.wsm.policymanager.IDocumentManage
  r bean for the local repository at path "" was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context
  "ResourcePattern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  <18-jul-2012 14:22:08 uur CEST> <Warning> <oracle.wsm.resources.policyaccess> <WSM-06210> <An instance of the interface oracle.wsm.policymanager.IUsageTracker b
  ean for the local repository at path "" was not available for configuring the oracle.wsm.policymanager.accessor.BeanAccessor repository accessor for context "Re
  sourcePattern [pattern=DOMAIN/weblogic/WebCenter, subjectType=MANAGED_DOMAIN, terms={PLATFORM=weblogic, SUBJECT_TYPE=MANAGED_DOMAIN, DOMAIN=WebCenter}]".>
  etc...
  The admin server is up & running, all other managed servers are down.
  I'm not sure what's happening in the background here. To me it feels like it's timing out a lot. After the warnings the server starts almost immediately.
  I tried to display more status information by changing log levels, to no avail, and Google provided me with little help as well.
  So I've come here hoping someone can speed me up :-)
  Edited by: 930408 on Jul 18, 2012 6:30 AM

  Thanks Srinath, your comment gave me an idea.
  I created a new domain with just WebCenter Content Server which solved my issue. Overtime my old domain had been extended quite a few times and likely the WSM PolicyManager had been inluded somewhere.
  The warnings are still there during startup but it proceeds immediately and my startup time has been reduced to 30-40 seconds. Still high but much more acceptable. Don't think I can squeeze more out of it though.
  Lesson learnt; keep you dev environment as minimalistic as possible.

• Installing Oracle Entitlements Server (Derby) and oracle.security.apm.derby.ear not found

  Weblogic 10.3.5
  OES 11.1.1.5
  Redhat 5.5
  These are the steps I followed http://docs.oracle.com/cd/E21764_01/install.1111/e12002/oes.htm
  I'm try to setup an evaluation domain for OES so I followed the setup for using the derby database. I have the derby schema setup correctly and I have create the OES domain using the Oracle Entitlesments Server Derby Template - 11.1.1.0. This goes through fine, but when I start the server I am getting the below error. The oracle.security.apm.derby.ear file is not in that location nor is it anywhere in the oracle home dir. So I'm not sure whats wrong, doing a search for the oracle.security.apm.derby.ear file on google returns nothing.
  <Jun 11, 2013 8:49:28 AM EDT> <Error> <Deployer> <BEA-149605> <Failed to create App/Comp mbeans for AppDeploymentMBean oracle.security.apm#11.1.1.3.0. Error - weblogic.management.DeploymentException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear.
  weblogic.management.DeploymentException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear
          at weblogic.application.internal.EarDeploymentFactory.findOrCreateComponentMBeans(EarDeploymentFactory.java:193)
          at weblogic.application.internal.MBeanFactoryImpl.findOrCreateComponentMBeans(MBeanFactoryImpl.java:48)
          at weblogic.application.internal.MBeanFactoryImpl.createComponentMBeans(MBeanFactoryImpl.java:110)
          at weblogic.application.internal.MBeanFactoryImpl.initializeMBeans(MBeanFactoryImpl.java:76)
          at weblogic.management.deploy.internal.MBeanConverter.createApplicationMBean(MBeanConverter.java:89)
          Truncated. see log file for complete stacktrace
  Caused By: java.io.IOException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear
          at java.util.zip.ZipFile.open(Native Method)
          at java.util.zip.ZipFile.<init>(ZipFile.java:114)
          at java.util.jar.JarFile.<init>(JarFile.java:133)
          at java.util.jar.JarFile.<init>(JarFile.java:97)
          at weblogic.utils.jars.JarFileDelegate.<init>(JarFileDelegate.java:32)
          Truncated. see log file for complete stacktrace
  >
  <Jun 11, 2013 8:49:28 AM EDT> <Error> <Deployer> <BEA-149205> <Failed to initialize the application 'oracle.security.apm [Version=11.1.1.3.0]' due to error weblogic.management.DeploymentException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear.
  weblogic.management.DeploymentException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear
          at weblogic.application.internal.EarDeploymentFactory.findOrCreateComponentMBeans(EarDeploymentFactory.java:193)
          at weblogic.application.internal.MBeanFactoryImpl.findOrCreateComponentMBeans(MBeanFactoryImpl.java:48)
          at weblogic.application.internal.MBeanFactoryImpl.createComponentMBeans(MBeanFactoryImpl.java:110)
          at weblogic.application.internal.MBeanFactoryImpl.initializeMBeans(MBeanFactoryImpl.java:76)
          at weblogic.management.deploy.internal.MBeanConverter.createApplicationMBean(MBeanConverter.java:89)
          Truncated. see log file for complete stacktrace
  Caused By: java.io.IOException: error in opening zip file with : /oracle11g/Middleware/Oracle_IDM1/apm/modules/oracle.security.apm_11.1.1/oracle.security.apm.derby.ear
          at java.util.zip.ZipFile.open(Native Method)
          at java.util.zip.ZipFile.<init>(ZipFile.java:114)
          at java.util.jar.JarFile.<init>(JarFile.java:133)
          at java.util.jar.JarFile.<init>(JarFile.java:97)
          at weblogic.utils.jars.JarFileDelegate.<init>(JarFileDelegate.java:32)
          Truncated. see log file for complete stacktrace
  >

  Hi User814822.
  I too come accross this issue. But, I didn't installed any patch on top of OES.
  I just rebuild the OES schema in database and it started perfectly. Hope it helps.
  B/W did you tried to configure external user store to OES like LDAP??
  Thanks

• Oracle Secure Backup- Error during configuration on Linux server

  Dear Gurus
  We are trying to configure Oracle Secure backup with the Oracle StorageTek tape library, on the Oracle Linux server for testing purposes..
  We are getting the following errors when we run the command to configure "discoverdev -ic -h orasecbak":
  Checking each library to associate discovered drive(s) with DTE...
    Assigning DTE 1 in library ora-sec-bk_lib_2 for drive ora-sec-bk_tape_1 with serial number: HUJ4411YD9
  Error: dte2 didn't report serial number to ora-sec-bk_lib_2 library
    Assigning DTE 1 in library ora-sec-bk_lib_1 for drive ora-sec-bk_tape_2 with serial number: HUJ4411YD9
  Error: dte2 didn't report serial number to ora-sec-bk_lib_1 library
  The tape library is connected to the server using two fiber connections..thats why the sg_map -i -x is giving output twice for the same serial number...
  .we installed Oracle Secure Backup 12.1
  Regards,
  Misbah

  What about disk space on your database server, is that OK? How about free RAM on all the systems?
  You can also check other kernel settings to see if you are running out of kernel message buffer space or shared memory.
  Thanks
  Rich

• GF 3.1.1 - java.security.AccessControlException: access denied - server.log

  I am upgrading an old NB4.1 produced JSP system that runs on Netscape iplanet to NB7.0.1 built JSP system running on Glassfish 3.1.1. I have four main files: login.html, login.jsp, ApplicationRmiConnection, and MenuManager.jsp . Three of four are working. The login.html is only a startup means to be sent to the login.jsp. The ApplicationRmiConnection is a servlet called by the login.jsp. It reads a properties file, establishes connection with the RMI and database (currently on the OLD system (Netscape iplanet)) which it does quite well. After the ApplicationRmiConnection is established and working the MenuManager.jsp . The first output from the MenuManager.jsp is a series of application.log calls for verification of data passed in from the successful ApplicationRmiConnection database read.
  How does GF 3.1.1 loose AccessControl permissions to the server.log to which it is writing? All I am using is application.log statements and it coughs, chokes, and quits.
  My output stacktrace is:
  INFO: PWC1412: WebModule[null] ServletContext.log():ApplicationRmiConnect: getRealPath("/") = [C:\Program Files\glassfish\glassfish-3.1\glassfish\domains\domain1\applications\MyApplication\]
  INFO: PWC1412: WebModule[null] ServletContext.log():MenuMgr: sParms - RMI Connect = com.company.rmi.ServerAppClientAdapter@19ca6bc
  INFO: PWC1412: WebModule[null] ServletContext.log():MenuMgr: caught an Exception
  WARNING: StandardWrapperValve[jsp]: PWC1406: Servlet.service() for servlet jsp threw exception
  java.security.AccessControlException: access denied (java.io.FilePermission C:\Program Files\glassfish\glassfish-3.1\glassfish\domains\domain1\logs\server.log read)
  at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
  at java.security.AccessController.checkPermission(AccessController.java:546)
  at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
  at java.lang.SecurityManager.checkRead(SecurityManager.java:871)
  at java.io.File.exists(File.java:731)
  at com.sun.enterprise.server.logging.GFFileHandler.publish(GFFileHandler.java:676)
  at java.util.logging.Logger.log(Logger.java:481)
  at com.sun.logging.LogDomains$1.log(LogDomains.java:354)
  at java.util.logging.Logger.doLog(Logger.java:503)
  at java.util.logging.Logger.logp(Logger.java:619)
  at com.sun.enterprise.web.logger.IASLogger.write(IASLogger.java:127)
  at com.sun.enterprise.web.logger.LoggerBase.log(LoggerBase.java:190)
  at com.sun.enterprise.web.logger.IASLogger.log(IASLogger.java:57)
  at org.apache.catalina.core.StandardContext.log(StandardContext.java:6828)
  at org.apache.catalina.core.ApplicationContext.log(ApplicationContext.java:449)
  at org.apache.catalina.core.ApplicationContextFacade.log(ApplicationContextFacade.java:359)
  at org.apache.jsp.MenuMgr_jsp._jspService(MenuMgr_jsp.java from :533)
  at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:111)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
  at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:403)
  at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:492)
  at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:378)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:847)
  at org.apache.catalina.core.StandardWrapper.service(StandardWrapper.java:1539)
  at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:281)
  at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
  at org.apache.catalina.core.StandardPipeline.doInvoke(StandardPipeline.java:655)
  at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:595)
  at com.sun.enterprise.web.WebPipeline.invoke(WebPipeline.java:98)
  at com.sun.enterprise.web.PESessionLockingStandardPipeline.invoke(PESessionLockingStandardPipeline.java:91)
  at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:162)
  at org.apache.catalina.connector.CoyoteAdapter.doService(CoyoteAdapter.java:330)
  at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:231)
  at com.sun.enterprise.v3.services.impl.ContainerMapper.service(ContainerMapper.java:174)
  at com.sun.grizzly.http.ProcessorTask.invokeAdapter(ProcessorTask.java:828)
  at com.sun.grizzly.http.ProcessorTask.doProcess(ProcessorTask.java:725)
  at com.sun.grizzly.http.ProcessorTask.process(ProcessorTask.java:1019)
  at com.sun.grizzly.http.DefaultProtocolFilter.execute(DefaultProtocolFilter.java:225)
  at com.sun.grizzly.DefaultProtocolChain.executeProtocolFilter(DefaultProtocolChain.java:137)
  at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:104)
  at com.sun.grizzly.DefaultProtocolChain.execute(DefaultProtocolChain.java:90)
  at com.sun.grizzly.http.HttpProtocolChain.execute(HttpProtocolChain.java:79)
  at com.sun.grizzly.ProtocolChainContextTask.doCall(ProtocolChainContextTask.java:54)
  at com.sun.grizzly.SelectionKeyContextTask.call(SelectionKeyContextTask.java:59)
  at com.sun.grizzly.ContextTask.run(ContextTask.java:71)
  at com.sun.grizzly.util.AbstractThreadPool$Worker.doWork(AbstractThreadPool.java:532)
  at com.sun.grizzly.util.AbstractThreadPool$Worker.run(AbstractThreadPool.java:513)
  at java.lang.Thread.run(Thread.java:662)

  The problem area has been found. We need to know the best method to replace the two lines of code we commented out. Here is what we found.
  Glassfish 3.1.1 Security does not play well with old RMI security (JDK1.2 vintage). Furthermore, once the old RMI security has messed with the mind of GF3.1.1 security the GF security truly believes it has in some cases no permission to read its own server.log file.
  Here is the offending code commented out in the Server Client Adapter (client wrapper):
  Note: this is legacy rmi code. i.e. manually executed rmic on the appropriate classfiles as this was originally created for java 1.2.
  // if(System.getSecurityManager() == null)
  // System.setSecurityManager(new RMISecurityManager());
  remote = (com.davisco.rmi.ServerAppServantAdapter_Stub)Naming.lookup(stringbuffer.toString());
  A thank you goes out to www.velocityreviews.com/forums/t276590-access-denied-java-lang-runtimepermission-createsecuritymanager.html even if it is five years old.
  Again, this is using the original version of RMI. How do we re-implement the RMI Security Manager without offending GF 3.1.1 security?

• Certificates from Oracle Security Server

  Hi everyone
  Has anyone been able to genereate a certificate using the Oracle Security Server (OSS) and been able to use that to set up a HTTP listener to use SSL with that?
  If so, how????
  OAS documentation goes on and on about how to install a certificate from a known CA, but forgets to document it's own OSS.
  Please help.
  Regards Gerard.

  John,
  I appreciate you asking around...FYI, I found reference to Oracle Security Server in Metalink...but couldn't attach it to a version of Oracle or another product!
  Thanks,
  Ed

• Oracle Security Server...now part of OID???

  I have a potential client that has posted requirements for a DBA with OSS framework. I was going through documentation, and it appears that OSS is an older implementation. I think that product was rolled into OID using Oracle Advanced Security / SSL. Is this true? Do you know what Oracle release terminated the use of OSS and rolled it's functionality into something else?
  Thanks,
  Ed Haskins
  [email protected]

  John,
  I appreciate you asking around...FYI, I found reference to Oracle Security Server in Metalink...but couldn't attach it to a version of Oracle or another product!
  Thanks,
  Ed

• Many "oc4j_socket_recvfull timed out" messages in Oracle HTTP Server log

  Hello everyone,
  We are using OAS 10.1.3.1 and see many messages in the Oracle HTTP Server log as follows. ipAddress and myOASInstance are used below to replace the actual values with what is conceptually present there in the log file.
  Mon Jan 5 15:39:44 2009 warn client ipAddress oc4j_socket_recvfull timed out
  Mon Jan 5 15:39:44 2009 error client ipAddress ecid: 1231198482:ipAddress:24569:0:36247,0 mod_oc4j: request to OC4J myOASInstance:12502 failed: recv
  failed (errno=4)
  Mon Jan 5 15:39:48 2009 warn client ipAddress oc4j_socket_recvfull timed out
  Mon Jan 5 15:39:48 2009 error client ipAddress ecid: 1231198487:ipAddress:1860:0:135,0 mod_oc4j: request to OC4J myOASInstance:12502 failed: recv failed (errno=4)
  Mon Jan 5 15:39:51 2009 warn client ipAddress oc4j_socket_recvfull timedout
  Mon Jan 5 15:39:51 2009 error client ipAddress ecid: 1231198343:ipAddress:1717:0:31,0 mod_oc4j: request to OC4J myOASInstance:12502 failed: recv failed (errno=4)
  Mon Jan 5 15:39:52 2009 warn client ipAddress oc4j_socket_recvfull timed out
  Mon Jan 5 15:39:52 2009 error client ipAddress ecid: 1231198343:ipAddress:1680:0:101,0 mod_oc4j: request to OC4J myOASInstance:12502 failed: recv failed (errno=4)
  Is anyone aware of what these warning/error messages indicate and what course(s) of action should be considered to remedy the issue?
  Thanks,
  Doug

  In mod_oc4j.conf, turn Oc4jCacheSize 0 : When setting Oc4JCachesize 0 in mod_oc4j.conf, this will force connection closure
  and avoid socket saturation in machines, as each connection will be opened, then after the connection ends, it will be closed.
  This means new request will need new connection and will not recycle existing connection.
  Also set Oc4jConnTimeout 55 : It has to be less than firewall idle timeout which is 60 sec usually.
  So that the OC4J connection is dropped by itself before the firewall drops it. This is in seconds and should be smaller than
  the Firewall timeout, if any.
  Hope this will help you.
  Steff

• Server.log full with oracle.ons.notification junk

  Hello Forum...
  I'm pretty new to orion application server - I see my OC4J server.log is over 50 MB! - full with this kind of entry that updates ever 30 seconds:
  " 08/05/02 09:27:56.899 Send notification:
  oracle.ons.Notification@187a9d6 "
  Despite searching around on this forum, I've still no idea what it means, and how to prevent it logging like crazy.
  Any help greatly appreciated.
  thanks
  /j-p.

  Sorry, don't know the answer off the bat for this one. I've seen it myself so I know what you refer to. It looks a little like a server trace log that is being emitted. If it wasn't for the size/frequency of it, you could safely ignore it -- it simply means that OC4J is responding to OPMN events to inform it that it is still alive.
  If you can, I'd think about opening a support tar for this and see if there is an existing fix, or if not, get a bug logged to get it fixed.
  I just had a look and can see in the code where its occurring and it should be trivial to fix it. I'll log a bug for it so if you do raise a TAR the details will be known to the support analyst. The bug # is 7132128.
  -steve-