Delegated Administrator Insufficient access

Hi,
I'm running iPlanet Messaging Server 5.2 Patch 2 (built Jul 14 2004)
libimta.so 5.2 Patch 2 (built 19:30:12, Jul 14 2004)
SunOS mail 5.8 Generic_117350-02 sun4u sparc SUNW,Ultra-Enterprise
When I try to modify something i get the following ldap error:
[13/Oct/2005:11:36:19 +0100] conn=3785 op=9 BIND dn="uid=MailAdmin,ou=People,o=xxx.xx,o=root" method=128 version=3
[13/Oct/2005:11:36:19 +0100] conn=3785 op=9 RESULT err=0 tag=97 nentries=0 etime=0
[13/Oct/2005:11:36:19 +0100] conn=3785 op=10 MOD dn="uid=rlam,ou=AHP_nonstaff,o=xxx.xx,o=root"
[13/Oct/2005:11:36:19 +0100] conn=3785 op=10 RESULT err=50 tag=103 nentries=0 etime=0
[13/Oct/2005:11:36:19 +0100] conn=3785 op=11 BIND dn="" method=128 version=3
[13/Oct/2005:11:36:19 +0100] conn=3785 op=11 RESULT err=0 tag=97 nentries=0 etime=0
ldaperror-50 means Insufficient access
The MailAdmin user is the Service Administrator.
So, I have this questions:
1- Which group(s) should the Service Administrator be a member of.
2 - Is that an ACI problem? if so where can I change it?
Hope you got enough information to help me,
Regards

Again, NDAdmin is the USER that Delegated Admin uses to talk to the Directory. that's the user that has rights to make the changes. NDAdmin is not a user that YOU use to log into iDA. "ServiceAdmin" is the user that normally would be used for that.
You can locate the password that DA uses, in the resource.properties file in iDA.
I don't understand your question, so am having a hard time answering it.
I don't claim to be expert with Directory, or setting ACI. I suggest that before making such changes, you back theDirectory up...

Similar Messages

  • Can't login System Access Manager and Delegated Administrator page

    Hi.
    Suddenly I can't log in System Access Manager & Delegated Administrator page. Yesterday,I could.
    Do you help me?
    thanks.

    k-m-i wrote:
    Suddenly I can't log in System Access Manager & Delegated Administrator page. Yesterday,I could.Given that you have provided nothing in the way of usable information to isolate the problem I can only suggest restarting your directory server (assuming it hasn't crashed) then restarting the web-container hosting Access Manager and see if that fixes the problem.
    If not, you will have to look further into the web-server logs and the directory server logs to see why the problem is occurring.
    Regards,
    Shane.

  • Restricting user access to delegated administration pages

    I have a question about delegated administration services.
    When a user is defined, regardless of its privileges, it has access to OIDDAS pages.
    And he or she can see the other users' information. (through Directory and Users tabs)
    Is there any way to restrict OIDDAS pages to selected userids?
    Regards
    Farbod

    If your version of the servlet container is compliant (I assume iPlanet is), then you can declaratively set your security in the web.xml. You can specify entire directories (HTML, JSP, graphics, etc) to be secured. This also prevents you from converting all your static content to JSP and inserting code into each one to validate the user. You may define your own custom login page as well. This is by far the best method of security if you're not trying to do anything fancy like data-level security. The J2EE security model is role-based.
    Hope this helps.
    Chris

  • Delegated Administrator Force UID to Email local Part on account creation

    I would like to force the login id on account creation to be the same as the email local part.
    So essentially mail local_part = uid.
    I think I can make the field non editable by editing the JSP and xml templates or Security.properties however I don't see a way to change the default value that is presented to the user for the login_id.
    If I could grab the previously entered email value from the session (using JSP) I could hack it in with JS. However the DAprinciple won't let me dump the session so I can see the attribute names.
    Am I going about this the wrong way?
    Edited by: sigilik on Feb 20, 2009 4:54 PM

    sigilik wrote:
    For the most part the system is going to be email only, I could go through and set all the appropriate settings on all the comms components to use the mail attribute as the auth lookup, but from a management perspective I think it would make much more sense to have user@domain actually be [email protected] a user to log in with their mail: attribute value is much more flexible. Restricting the uid to be the same as the mail: attribute prevents you from easily changing the mail address (e.g. the user changes their name when they get married) without also having to change the uid (which is a long-tedious process to be avoided if possible).
    If uid = local_part I don't have to deal with any of that.This is true. That being said I couldn't see any easy way to enforce this requirement using Delegated Administrator.
    I mean considering that traditionally a uid on a unix system has always mapped that user to that system's domain wouldn't this make sense? Or am I missing something....Mapping the uid <=> email address made sense when the user logged into the mail-server to access their email. It was easy to remember (and route) the email address login-uid@unix-host.
    Given that this is no requirement for the uid to be related to the mail address, nor the mail-server hostname to the domain of the user for that matter, why continue to enforce it?
    Regards,
    Shane.

  • Orcladmin: "Insufficient access right to perform action" using oidadmin

    After sucessfully installing OID from 8.1.7 CD on Sun Solaris 8
    (SPARC) I can start the monitor and the oidldap. After
    sucessfully connecting with orcladmin using oidadmin I always get
    the same error (either using oidadmin on windows or solaris) when
    accessing "entry management", "schema management" or "audit log
    management":
    Insufficient access right to perform action.
    but the default ACP allows everyone (browse add delete)
    anyone else had the same problem?
    I tried to create the name server with OID with netca which
    obviously does not work either.

    Hi Christian:
    You say that you conencted to OID as "oidadmin". Since OID does
    not have any user account called "oidadmin" you were probably
    conencted as an anonymous user. If you are trying to connect as
    the administrator of OID the correct user account name is
    "orcladmin" with a default password of welcome. Try this and let
    me know if you sitll have troubles.
    Thanks,
    Jay Tomlinson

  • IFS-30027: Insufficient access to create a SchemaObject

    I receive the following error when I to parse a XML file. IFS-
    21005 indicates, I need administrator mode. What I want know is
    this misleading and I just need to modify the ACL or does the
    administrator need grant a higher level of access?
    oracle.ifs.common.IfsException: IFS-30002: Unable to create new
    LibraryObject oracle.ifs.common.IfsException: IFS-30027:
    Insufficient access to create a SchemaObject
    oracle.ifs.common.IfsException: IFS-21005: Administrator mode is
    required for this operation
    Thanks,
    Art

    If the XML file you are uploading is specifying the creation of a
    SchemaObject (e.g. a ClassObject, ValueDomain, ClassDomain, or
    ValueDefault), the session must be in admin mode. There is no
    way to circumvent this by changing an ACL.
    regards,
    dave

  • Delegated Administrator user not found

    I working with this produtcs, ( i know is an old version and a upgrade should be great, working on it ;) ..
    JES 2005Q4
    Sun Java(tm) System Messaging Server 6.2-6.01 (built Apr 3 2006)
    Delegated Administrator 6.3-2.02
    Directory Server 5.2
    I'm having a situation with the DA, when I try to a search, by name, a group of user with this pattern, karla* any user is displayed. I looked at the directory server access log and I see that a search is performed an return 4 entries but no one is listed within the DA interface.
    I did an ldapsearch with cn=karla* and I found the 4 entries. I also did a search by uid within the DA an just 3 of the users were listed. The user (karla.guerrero) that is not appearing can be listed using ldapsearch, but cant be listed using commadmin.
    The user is not deleted i did check the mailsuerstatus and inetmailuserstatus an seen. Heres is part of the DA log file, when I did the search by name using the pattern karla*
    FINE: UserTableModel.search() - search key: karla*
    May 6, 2009 5:20:01 PM com.sun.comm.da.view.user.UserListTableModel search
    FINE: Reqattr: o=example.com,dc=example,dc=com
    May 6, 2009 5:20:01 PM com.sun.comm.da.view.user.UserListTableModel search
    FINE: Organization DN: o=example.com,dc=example,dc=com
    May 6, 2009 5:20:01 PM com.sun.comm.da.view.user.UserListTableModel search
    FINE: retrieving users....
    May 6, 2009 5:20:01 PM UserModel retrieve()
    FINER: ENTRY
    May 6, 2009 5:20:01 PM UserModel getOrganization(String orgName)
    FINER: ENTRY
    May 6, 2009 5:20:01 PM com.sun.comm.da.model.UserModel getOrganization
    FINEST: Searching for organization [o=example.com,dc=example,dc=com]
    May 6, 2009 5:20:01 PM com.sun.comm.da.model.UserModel getOrganization
    FINE: Organization name: example.com
    May 6, 2009 5:20:01 PM UserModel getOrganization(String orgDN)
    FINER: RETURN
    May 6, 2009 5:20:01 PM com.sun.comm.da.model.UserModel retrieve
    SEVERE: null
    java.lang.NullPointerException
    at com.sun.comm.jdapi.DAOrganization.searchUsers(DAOrganization.java:146)
    at com.sun.comm.da.model.UserModel.retrieve(UserModel.java:1027)
    at com.sun.comm.da.view.user.UserListTableModel.search(UserListTableModel.java:399)
    at com.sun.comm.da.view.UserListViewBean.beginDisplay(UserListViewBean.java:310)
    at com.iplanet.jato.taglib.UseViewBeanTag.doStartTag(UseViewBeanTag.java:149)
    at jsps.jsp._users._UserList_jsp._jspService(_UserList_jsp.java:103)
    at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
    at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
    at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
    at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
    at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
    at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:471)
    at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:382)
    at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:340)
    at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
    at com.sun.comm.da.view.UserListViewBean.handleSearchPrimaryButtonRequest(UserListViewBean.java:380)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)
    at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
    at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
    at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
    at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
    at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
    at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
    at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
    at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
    at com.sun.comm.da.DAServlet.service(DAServlet.java:152)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
    at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
    at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
    at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
    at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    May 6, 2009 5:20:01 PM com.sun.comm.da.view.user.UserListTableModel search
    SEVERE: null
    com.sun.comm.da.common.DAGUIException: users.user.usernotfound
    at com.sun.comm.da.model.UserModel.retrieve(UserModel.java:1036)
    at com.sun.comm.da.view.user.UserListTableModel.search(UserListTableModel.java:399)
    at com.sun.comm.da.view.UserListViewBean.beginDisplay(UserListViewBean.java:310)
    at com.iplanet.jato.taglib.UseViewBeanTag.doStartTag(UseViewBeanTag.java:149)
    at jsps.jsp._users._UserList_jsp._jspService(_UserList_jsp.java:103)
    at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
    at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
    at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
    at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
    at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
    at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:471)
    at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:382)
    at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:340)
    at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
    at com.sun.comm.da.view.UserListViewBean.handleSearchPrimaryButtonRequest(UserListViewBean.java:380)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
    at java.lang.reflect.Method.invoke(Method.java:585)

    bootbk wrote:
    I'm having a situation with the DA, when I try to a search, by name, a group of user with this pattern, karla* any user is displayed. I looked at the directory server access log and I see that a search is performed an return 4 entries but no one is listed within the DA interface.
    I did an ldapsearch with cn=karla* and I found the 4 entries. I also did a search by uid within the DA an just 3 of the users were listed. The user (karla.guerrero) that is not appearing can be listed using ldapsearch, but cant be listed using commadmin.It does appear that the karla.guerrero user is causing a problem with Delegated Administrator. You may be hitting bug#6834856 - "DA 6.x, problems with some users with base64 encoded attribute values".
    Please provide the LDIF for this particular user.
    Regards,
    Shane.

  • Unable to import pab ldif file. Insufficient Access

    I am in the process of upgrading from iMS 5.2 w/iDS 4.16 on an NT box to iMS 5.2 w/iDS 5.1 on Solaris 9.
    And , yes I am new to solaris, but that is another story.....
    I have successfully installed solaris, iDS 5.2, run the ims_dssetup.pl script, installed iMS 5.2 servers, and gotten everyting to work. I have successfully imported my users by using .ldif files. My problem is that when I try to import the pab entries from an ldif file, all the entries get rejected with the error "Insufficient Access".
    I should add that I am doing this on a SunFire V210 with no video card, mouse or keyboard. In other words through the mgmt port and using a windows workstation to access the administration and directory servers.
    I'm at wits end.... do I go left or right?
    Thanks in advance..

    I am logging into the administration server from my windows workstation as admin (administration server user) and i believe this to be the same user as the configuration directory user admin. I am opening the server group and opening the directory server window. I then go to the configuration tab and click on Console > Import database. I then select the file on my local windows workstation(choosing one on the server seems to not be an option) and click ok.
    it then procedes to reject the entries.
    I did try to do an ldapadd -d DirectoryManager -w password -f filename.ldif from the ldap server instance directory, but got basically the same results..
    What am I doing wrong?

  • Every time i try to download itunes it says insufficient access to bonjour.

    i recently bought a new toshiba laptop with windows seven, i have an iphone and have never had any problems with itunes before. I tried to download it to my new laptop in order to run updates to my phone. Every time i try to download it, it says i have insufficient access to bonjour and to log in as administrator and i am logged in as the administrator. Would really apreciate some help please.

    Every time i try to download it, it says i have insufficient access to bonjour and to log in as administrator and i am logged in as the administrator.
    What's the precise text of the error message, please? (There's a couple of different ones I can think of that you might be getting.)

  • Delegated Administrator 6.4 LDAP Failover?

    Does Delegated Administrator 6.4 support LDAP failover?
    I have looked at the current documentation and nothing is mentioned about this and I have searched docs.sun.com and this is mentioned for the older iPlanet branded versions of the software.
    What I am looking for is a situation where DA is on a separate host from Directory Server and the Directory Server goes down.
    I poked around in the config files and I found two instances where my current LDAP server was listed by name:
    1. /opt/SUNWcomm/config/cli-userprefs.properties where IdentityServerHost is equal to the FQDN of my Access Manager server (I'm guessing based on it looking at port 80)
    2. /var/opt/SUNWcomm/da/WEB-INF/classes/com/sun/comm/da/resources
    in daconfig.properties, specifically the commadminserver.host
    Since this is a test environment the DA server is also the DS server right now so I might be off on these files/properties.
    Is such a setup possible?

    I don't think DA support failover itself.

  • Adding custom object class on Delegated Administrator (CommSuite 7)

    Hi Guys,
    As described in the subject i need to customize my DA.
    I checked Documentation but as far as i can see it's possible to do it just for installations including AM (Access Manager isn't installed in our enviroment and we have not ou=services entry in our Directory).
    Any ideas?
    Thank's in advance!

    caius1 wrote:
    I checked Documentation but as far as i can see it's possible to do it just for installations including AM (Access Manager isn't installed in our enviroment and we have not ou=services entry in our Directory).
    Any ideas?Try the following:
    1. Edit the <da_deploy_base>/WEB-INF/classes/sun/comm/cli/server/servlet/serverconfig.properties file
    2. After the "usercreate-11=attribute!!inetuserstatus!!active" line add the following ... substituting <you objectclass> as appropriate.
    usercreate-12=objectclass!!<your objectclass>3. Redeploy Delegated Administrator e.g.
    ./config-appsvr8x-da deploy
    ./config-appsvr8x-commcli deployRegards,
    Shane.

  • "Insufficient access privileges for operation" Export Error

    I have been working on a very important project in iMovie 09 and I went to go export it into quicktime format, and I get an error that says "The movie could not be exported because an error occurred. (Insufficient access privileges for operation )"
    I have the video files on an external drive, and I know based on the error message that it has something to do with the privileges of the video files. I just don't know how to fix it. Hopefully you can help!
    Thanks

    This may not be your problem, but you may want to check. By default, permissions are ignored on external volumes. Select the external volume with your video files on it and go to File --> Get Info. At the bottom of that window, make sure that "Ignore ownership on this volume" is checked. If it is not, check it. (You may have to click the "lock" and supply your administrator password first.)
    If it is checked, then the conflict is with some other file(s), in which case, someone else will have to help you with that.

  • Can't create user with Delegated Administrator Console! Thank you!

    I have installed JES2005Q4 (include Deirectory Server&#12289;Access Manager&#12289;Web Server&#12289;Messaging Server&#12289;Calendar Server&#12289;Instant Messaging&#12289;Communications Express and Delegated Administrator) ,
    i can create domain and user with "commadmin" command, but can't create user with Delegated Administrator console.
    When i checked the logs of the Web Server, found some errors:
    [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: ApplicationDispatcher[da] WEB2649: Servlet.service() for servlet jsp threw exception
    javax.servlet.ServletException
         at org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:536)
         at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:559)
         at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
         at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
         at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
         at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:471)
         at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:382)
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:340)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    ----- Root Cause -----
    javax.servlet.jsp.JspException
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCW
    [04/Feb/2006:11:55:25] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: WEB2798: [da] ServletContext.log(): [ERROR] Uncaught application exception
    com.iplanet.jato.NavigationException: Exception encountered during forward
    Root cause = [javax.servlet.jsp.JspException]
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    Root cause:
    javax.servlet.jsp.JspException
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getWizardPageHTML(CCWizardTag.java:1577)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendPageletBodyContentHTML(CCWizardTag.java:668)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.appendWizardBodyHTML(CCWizardTag.java:658)
         at com.sun.web.ui.taglib.wizard.CCWizardTag.getHTMLStringInternal(CCWizardTag.java:469)
         at com.sun.web.ui.taglib.common.CCTagBase.doEndTag(CCTagBase.java:114)
         at jsps.com_sun_web_ui._jsp._wizard._WizardWindow_jsp._jspService(_WizardWindow_jsp.java:260)
         at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:107)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at com.iplanet.ias.web.jsp.JspServlet$JspServletWrapper.service(JspServlet.java:687)
         at com.iplanet.ias.web.jsp.JspServlet.serviceJspFile(JspServlet.java:459)
         at com.iplanet.ias.web.jsp.JspServlet.service(JspServlet.java:375)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:772)
         at org.apache.catalina.co
    [04/Feb/2006:11:55:26] failure (12015): for host 192.168.182.130 trying to POST /da/wizard/WizardWindow, service-j2ee reports: StandardWrapperValve[WizardWinServlet]: WEB2792: Servlet.service() for servlet WizardWinServlet threw exception
    javax.servlet.ServletException: Uncaught exception
         at com.iplanet.jato.ApplicationServletBase.onUncaughtException(ApplicationServletBase.java:1415)
         at com.sun.comm.da.WizardWinServlet.onUncaughtException(WizardWinServlet.java:98)
         at com.iplanet.jato.ApplicationServletBase.fireUncaughtException(ApplicationServletBase.java:1164)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:639)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:213)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:280)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:212)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:209)
         at org.apache.catalina.core.StandardPipeline.invoke(StandardPipeline.java:509)
         at com.iplanet.ias.web.connector.nsapi.NSAPIProcessor.process(NSAPIProcessor.java:161)
         at com.iplanet.ias.web.WebContainer.service(WebContainer.java:580)
    ----- Root Cause -----
    com.iplanet.jato.NavigationException: Exception encountered during forward
    Root cause = [javax.servlet.jsp.JspException]
         at com.iplanet.jato.view.ViewBeanBase.forward(ViewBeanBase.java:380)
         at com.iplanet.jato.view.ViewBeanBase.forwardTo(ViewBeanBase.java:261)
         at com.sun.web.ui.view.wizard.CCWizard.handleNextButtonRequest(CCWizard.java:730)
         at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
         at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
         at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
         at java.lang.reflect.Method.invoke(Method.java:585)
         at com.iplanet.jato.view.command.DefaultRequestHandlingCommand.execute(DefaultRequestHandlingCommand.java:183)
         at com.iplanet.jato.view.RequestHandlingViewBase.handleRequest(RequestHandlingViewBase.java:308)
         at com.iplanet.jato.view.ViewBeanBase.dispatchInvocation(ViewBeanBase.java:802)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:740)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandlerInternal(ViewBeanBase.java:760)
         at com.iplanet.jato.view.ViewBeanBase.invokeRequestHandler(ViewBeanBase.java:571)
         at com.iplanet.jato.ApplicationServletBase.dispatchRequest(ApplicationServletBase.java:957)
         at com.iplanet.jato.ApplicationServletBase.processRequest(ApplicationServletBase.java:615)
         at com.iplanet.jato.ApplicationServletBase.doPost(ApplicationServletBase.java:473)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:807)
         at com.sun.comm.da.WizardWinServlet.service(WizardWinServlet.java:111)
         at javax.servlet.http.HttpServlet.service(HttpServlet.java:908)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:247)
         at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:193)
         at com.sun.comm.da.LoginFilter.doFilter(LoginFilter.java:128)
         at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain

    Now i want to update the Delegated Administrator with the 119778-09.jar patch, but the error show:
    Unable to open keystore </var/sadm/security/patchadd/trustore> for reading.
    Signature invalid on signed patch <119778-09>.

  • Set-aduser : Insufficient access rights to perform the operation

    I am a domain admin, enterprise admin, exchange admin, domain user, and others.
    While running a PS on a DC as the administrator, The commands I'm running are ...
    $expdate = get-date -date '01/01/2014'
    set-aduser -identity testmail5 -accountexpirationdate $expdate
    I get the following error ...
    set-aduser : Insufficient access rights to perform the operation
    At line:1 char:1
    + set-aduser -identity testmail5 -accountexpirationdate $expdate
        + CategoryInfo          : NotSpecified: (testmail5:ADUser) [Set-ADUser], ADException
        + FullyQualifiedErrorId : Insufficient access rights to perform the operation,Microsoft.ActiveDirectory.Management.Comm
       ands.SetADUser
    I then switch to a different DC, the command 'might' work once, but will never run again in the same window.
    Then I tried this ...
    start-process powershell -verb runas
    That gave me an additional PS window, and I then tried running the commands again.
    Same error message.
    So I tried the following command ...
    $expdate = get-date -date '01/01/2014'
    set-aduser -server XXDC03 -identity testmail5 -accountexpirationdate $expdate
    Same error message.
    Is there any way that I can get around this problem?
    Please help.

    Keep in mind that the account used to open the PowerShell session must be the same account you're using to open ADUC. The error message means that Set-ADUser is trying to set the attribute for the account, but it's failing. Make sure to test with multiple
    different accounts, in case the access control list of the object you're trying to modify is the cause of the problem.
    Your PowerShell syntax is valid, so this isn't really a scripting question but a security/directory services question.
    -- Bill Stewart [Bill_Stewart]

  • Problem with Delegated Administrator

    Dear All
    I am having probelm to get the JES2005/Q4 get working on my server,
    installation goes okay with no error and installation log and events looks okay, after installation and configuration of Delegated administrator i can not login to DA with admin or amadmin username name and I keep getting invalid username msg. the funny thing is I can login to com express with admin username but not to DA. I tried almost everthing but I can not undrestand where is the problem
    Any help is apperciated.
    BR
    Mo

    DA is part of Sun Messaging Server deliveries and questions should be posted to the Sun Messaging Server forum.
    Regards,
    Ludovic.

Maybe you are looking for

  • Dual boot win7 & 8 on t430

    Newbie here needing some help. Just got my t430 fresh out of the box and I want to dual boot win 7 and 8. The installed system was 7, but came with windows 8 recovery disks in the box. I thought dual boot would be pretty straightforward, but I haven'

  • Exception while perfroming Java mapping in XI

    Hi there, Im doing some java mapping in XI using the standard/classic DOM and JAXP packages, I have tested everything outside XI and the code seems to be OK. However when I deploy the code into XI self and run a test, something goes wrong. This is th

  • I am getting a Eula error trying to open PDF file, not allowing me to open...what should I do?

    I have tried reinstalling software and didn't work.  How do I fix this eula error and open up PDF files again?

  • Static methods in class accessed by jsp/servlet

    I wanted to conceptually know ... If I have a class specifically doing some quering to database and giving results to jsp and servlet ... does this make sense? Static methods are ok ? Is it secure enough if I have all connection classes local to a me

  • Monitoring of Non ABAP System

    Hi, I posted this thread at the Solution Manager forum. I need to confirm what i understood there. I want to monitor portal (Non ABAP) components in Solution Manager 3.2 . I was advised that it is not possible in Solman 3.2 and i have to upgrade it 4