Security Manager Setting for Tomcat.

Similar Messages

• [svn:bz-trunk] 20680: Tomcat 7 Login Module work, due to the Tomcat 7 Security framework change we need to work out the security integration piece for tomcat 7 .

  Revision: 20680
  Revision: 20680
  Author:   [email protected]
  Date:     2011-03-08 08:23:30 -0800 (Tue, 08 Mar 2011)
  Log Message:
  Tomcat 7 Login Module work, due to the Tomcat 7 Security framework change we need to work out the security integration piece for tomcat 7. So far the ValveBase and tomcat Realm had API changes which will impact on the Login integration with Tomcat 7
  Modified Paths:
      blazeds/trunk/modules/opt/build.xml
  Added Paths:
      blazeds/trunk/modules/opt/lib/catalina-708.jar
      blazeds/trunk/modules/opt/src/tomcat/flex/messaging/security/TomcatValve708.java

  Revision: 20680
  Revision: 20680
  Author:   [email protected]
  Date:     2011-03-08 08:23:30 -0800 (Tue, 08 Mar 2011)
  Log Message:
  Tomcat 7 Login Module work, due to the Tomcat 7 Security framework change we need to work out the security integration piece for tomcat 7. So far the ValveBase and tomcat Realm had API changes which will impact on the Login integration with Tomcat 7
  Modified Paths:
      blazeds/trunk/modules/opt/build.xml
  Added Paths:
      blazeds/trunk/modules/opt/lib/catalina-708.jar
      blazeds/trunk/modules/opt/src/tomcat/flex/messaging/security/TomcatValve708.java

• HP Protecttools Security Manager Suite for Windows 10

  Where to I find a Windows 10 compatible HP Protecttools Security Manager Suite for download?  Had to uninstall when upgrading to Windows 10.

  @Honour Student, how did you make copies of the installers? I'm hopelessly out of my depth here  and need to be walked thru. I own a Probook 4540s notebook running windows 7. My processor is intel core i5. I really don't want to lose my fingerprint swipe security feature. Please I need help, this stuff is driving me nuts

• Need security management software for OS 8.6 through 9.2

  Are there any security management softwares available these days for OS 8.6 through OS 9.2? Something which lets the computer owner turn off firewire and USB is what I'm looking for. It would be nice to be able to allow only some selected USB devices, like a keyboard and a printer or scanner, and still disallow external drives or thumb flash drives, but turning off all USB would be useful on machines which don't need USB keyboards, like beige or B&W PMG3 computers or G3 iBooks.

  Are there any security management softwares available these days for OS 8.6 through OS 9.2? Something which lets the computer owner turn off firewire and USB is what I'm looking for. It would be nice to be able to allow only some selected USB devices, like a keyboard and a printer or scanner, and still disallow external drives or thumb flash drives, but turning off all USB would be useful on machines which don't need USB keyboards, like beige or B&W PMG3 computers or G3 iBooks.

• Cisco Security Manager IOPS for Storage (VM Deployent)

  Hi,
  I've been asked by a client about the Cisco Security Manager requirement to have 1TB of storage for events and another for archiving.
  They wish to know the IOPS requirement for this storage. Please could anyone assist in this ?
  Many thanks,
  Mark                 

  Hi,
  I'm not sure that I can really help you, but I can verify that on my CSM 4.5 server which is running normally, that service has a starup type of automatic and is in the "Started" state.
  You may want to check your system and application event logs to see if there are any messages that could explain why it stopped.
  Regards,
  Matt

• Visual Web Pack looking for AppServer but set for Tomcat

  I am having trouble starting a Creator 2 project I imported into the Visual Web Pack. It seems to be trying to use the AppServer which I do not have installed. It is set up to use Tomcat55. I set it up following the import instructions. It is clearly marked Tomcat55 in project.properties. It wont launch though. It just prints null and the following error is in the ide log...it happens every time i try and run the project. Other projects I create in VWP run fine with tomcat embedded. The error is:
  INFORMATIONAL *********** Exception occurred ************ at 8:25 PM on Jan 16, 2007
  javax.enterprise.deploy.spi.exceptions.DeploymentManagerCreationException: deployer:Sun:AppServer::localhost:4849 The Application Server installation directory is not correctly set up. (Use the Tools->J2EE Platform Manager menu to correct.)
  at org.netbeans.modules.j2ee.sun.ide.dm.SunDeploymentFactory.getDisconnectedDeploymentManager(SunDeploymentFactory.java:130)
  at org.netbeans.modules.j2ee.deployment.impl.Server.getDisconnectedDeploymentManager(Server.java:144)
  at org.netbeans.modules.j2ee.deployment.impl.Server.getDisconnectedDeploymentManager(Server.java:138)
  [catch] at org.netbeans.modules.j2ee.deployment.config.ConfigSupportImpl.getDeploymentConfiguration(ConfigSupportImpl.java:432)
  at org.netbeans.modules.j2ee.deployment.config.ConfigSupportImpl.getWebContextRoot(ConfigSupportImpl.java:227)
  at com.sun.rave.project.jsfproject.ProjectWebModule.getContextPath(ProjectWebModule.java:107)
  at com.sun.rave.project.jsfproject.ui.customizer.WebProjectProperties.init(WebProjectProperties.java:328)
  at com.sun.rave.project.jsfproject.ui.customizer.WebProjectProperties.<init>(WebProjectProperties.java:262)
  at com.sun.rave.project.jsfproject.WebProject.getWebProjectProperties(WebProject.java:466)
  at com.sun.rave.project.jsfproject.RaveWebActionProvider.invokeAction(RaveWebActionProvider.java:124)
  at org.netbeans.modules.project.ui.actions.ProjectAction.actionPerformed(ProjectAction.java:96)
  at org.netbeans.modules.project.ui.actions.LookupSensitiveAction.actionPerformed(LookupSensitiveAction.java:139)
  at javax.swing.AbstractButton.fireActionPerformed(AbstractButton.java:1995)
  at javax.swing.AbstractButton$Handler.actionPerformed(AbstractButton.java:2318)
  at javax.swing.DefaultButtonModel.fireActionPerformed(DefaultButtonModel.java:387)
  at javax.swing.DefaultButtonModel.setPressed(DefaultButtonModel.java:242)
  at javax.swing.AbstractButton.doClick(AbstractButton.java:357)
  at javax.swing.plaf.basic.BasicMenuItemUI.doClick(BasicMenuItemUI.java:1170)
  at javax.swing.plaf.basic.BasicMenuItemUI$Handler.mouseReleased(BasicMenuItemUI.java:1211)
  at java.awt.Component.processMouseEvent(Component.java:6038)
  at javax.swing.JComponent.processMouseEvent(JComponent.java:3260)
  at java.awt.Component.processEvent(Component.java:5803)
  at java.awt.Container.processEvent(Container.java:2058)
  at java.awt.Component.dispatchEventImpl(Component.java:4410)
  at java.awt.Container.dispatchEventImpl(Container.java:2116)
  at java.awt.Component.dispatchEvent(Component.java:4240)
  at java.awt.LightweightDispatcher.retargetMouseEvent(Container.java:4322)
  at java.awt.LightweightDispatcher.processMouseEvent(Container.java:3986)
  at java.awt.LightweightDispatcher.dispatchEvent(Container.java:3916)
  at java.awt.Container.dispatchEventImpl(Container.java:2102)
  at java.awt.Window.dispatchEventImpl(Window.java:2429)
  at java.awt.Component.dispatchEvent(Component.java:4240)
  at java.awt.EventQueue.dispatchEvent(EventQueue.java:599)
  at java.awt.EventDispatchThread.pumpOneEventForFilters(EventDispatchThread.java:273)
  at java.awt.EventDispatchThread.pumpEventsForFilter(EventDispatchThread.java:183)
  at java.awt.EventDispatchThread.pumpEventsForHierarchy(EventDispatchThread.java:173)
  at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:168)
  at java.awt.EventDispatchThread.pumpEvents(EventDispatchThread.java:160)
  at java.awt.EventDispatchThread.run(EventDispatchThread.java:121)
  Message was edited by:
  CandideEC

  Hi!
  It seems to me that your application is deployed to Sun Application Server. Try to change Deployment Server in project's properties. For that:
  1) Rightclick on top of project in 'Projects' window.
  2) Select Properties.
  3) Change Server in 'Run' section.
  Thanks,
  Roman.

• In PS C6 I'm getting a warning that "No color management" setting for printer isn't supported. Why?

  I'm using Photoshop Extended CS6. I'm printing to either an Epson Stylus Pro 9900 or an Epson SP4900. In the print dialog, I get a warning I haven't seen in a long time. It says the setting "No Color Management" at the printer is not supported. This is patently false. I am given a link to download the Adobe Color Print Utility (which gives abominable results; I know this from repeated uses in the past), and a service note saying this issue is for Photoshop CS5. Clearly there is a problem, possibly a bug.
  I have never had CS5 installed on this machine. I do have PS CS5.5 and PS CS6 on this machine (I have used all versions of CS in various suites from the start of the product line).
  Can anyone explain this annoying intrusion on my workflow? Of course "no printer management on printer/Photoshop manages color" works... There must be an explanation.
  Thanks.

  An excellent question, and worthy, in fact of an essay, if not a chapter in a book on color management and proofing issues. And as you suggested earlier, it's a philosophical question (not strictly conceptual to my way of thinking).
  It's also a question I can't answer, in terms of practicality and a personal sense of efficacy in dealing with a monolithic process (producing a print). That is, I can't answer for you, or anyone else I'd venture to say.
  Stepping back for the briefest of moments, we should remember we live, on computers, in a virtual world. Whatever we see is a simulation, or if you prefer a simulacrum. Plato would probably say, not much better than the play of shadows on the cave wall from the flickering flames.
  It's called soft proofing for a reason. The only hard proof is a print. I am old enough to remember the days when producing a color print from a chrome (requiring an internegative) or even directly from negative images, was an art, best left to skilled technicians in a lab. And even then it was an iterative process. Making an image ready for accurate color rendition in lithographic reproduction was the same things, maybe times ten. And required sometimes a whole team of skilled technicians, the last of them being the press operator. You can't appreciate the full impact of these facts of life back then unless you have been "on press" in some plant, invariably in the hinterlands, looking at actual press proofs under 6500K calibrated proofing lights, comparing them against the original chrome, the separation proofs used to make the plates. You had to understand not only the physics (and biology) of RGB imaging, but the intricacies of subtractive technology, aka CMYK. As in so much else in life, less is more, and so you had to understand that sometimes the least adjustment was the best (because you were also dealing with the physical constraints of layers of ink on paper), so if an image looked too green on the press sheet, it might be best to throttle up on the magenta just a touch, rather than cut back on the yellow and cyan. You balanced one against the other, because of the possible effects on other parts of the image.
  This long-winded, probably tiresome if not boring, anecdote is meant to be illustrative of the analogous situation in which we find ourselves printing images with digital technology, combined with electromechanical devices spraying pigmented fluids in drops measured in picoliters of volume on substrates of varying physical properties related to absorbency, refractive index, contribution to an arcane phenomenon known as metamerism.
  We can't hope to see anything but a, pardon the expression, simulacrum of the combination of the effects of these phenomena (and other phenomena as a result of the interdigitation of these different technologies, at the software level, and even more so at the hardware level), at least not on a screen (which introduces a whole other set of variables). We can't see what we will get unless we actually go through the ordeal and expense of producing a hard proof. And then using our experience and deductive skills to make adjustments, not unlike maneuvering a rover on the moon from a control station on earth, that will produce the desired outcome within a very narrow (I assume) set of parameters.
  Personally, I prefer working in Lightroom and in Photoshop in order to produce the image I would like to see in an ideal, if you like a Platonic, world. If what was on the screen could somehow be transferred magically to the surface of a lovely unsullied sheet of Arches cold press watercolor paper, 350g/m^2 coming out of an Epson 9900... (I've done it). Not so easy.
  What the soft proofing capabilities of Photoshop are good for, from my point of view, is to show me how far off the image I am looking at as ideal will fall short on the intended target substrate. I must always remember, it is not a wholly accurate rendition of what the printer will do with a sheet of paper from a particular production run, with the particular combination of inks (with varying dates of origin of manufacture), never mind the vagaries of temperamental nozzles in the printhead, not to mention conditions of humidity, temperature, etc.
  What the softproof tells me is that the red in that scarf on my subject really needs bumping up, if I expect the level of vibrancy I see I need in the ideal rendition. And I make the adjustment in the RGB representation on the screen, etc. When I have made my by guess and by gosh adjustments to all problem areas as suggested by the soft proof (it is only as accurate after all as the RGB image is in depicting any realistic expectation of a final result—the only assurance I have is that if I really want people to see my image as I see it on the screen I had better show them the screen...), I make a print. Sometimes I have to make two or three until I am satisfied this is truly the best I will get from the beautiful, but arcane, surface of the paper I have chosen.
  In short, it's a risky business, and expensive.
  If you want fast and affordable, frankly, stick to premium grade high gloss surfaces, preferably from Epson, in your case, or the manufacturer of your printer in general (Canon, incidentally, produces spectacular results on their Pixma Pro series printers and their own papers, especially the Pro Luster surface... I don't even bother with soft proofing... so there is an exception even to this rule I am taking a lot of time to point out to you). High gloss papers tend to have the widest gamut, give the deepest blacks, and the best renditions of saturated color, red and blue particularly, for some reason often the hardest spectral colors to render with the level of saturation you might like. Especially if you tend to shoot vividly colored subjects.
  If you regularly use matte surface, or so-called fine art or watercolor surfaces, I think even if you adhere to the workflow implied in your question... Just set the computer and screen to "soft proof" in effect in Photoshop and work from their, and hope for the best... you are in for massive chronic dissatisfaction.
  One last thing, I produce what I consider a basic working image in Lightroom, add further effects using a battery of third party effects software (from Google Nik, OnOne, Imagenomic, AlienSkin, etc.) and then go to work further on the image in Photoshop, but I never save the image, except as a revised file, once I'm done with Lightroom adjustments (which are never applied to the RAW file, but kept as meta-instructions separately in the LR database). So any effects added produce a new file. Any changes in Photoshop produce a new file. And when I am working, finally on an image to make into a committed hard print, I NEVER save the settings I use to produce a print, including a print I deem acceptable for exhibition. If nothing else, I can honestly tell a print buyer they are getting a unique "hand-made" image. I don't feel I'm operating a factory after all, but a studio. Further, changes in technology occur dynamically and continuously. I don't know what I would do with the settings I derived from working solely in the "soft-proofing" mode you think you might prefer in your workflow, if a new paper or ink set, or printer came along that solved the problems I had to fudge around to get a decent print with the existing technology at the time. At least if I work solely in RGB trying to achieve an "ideal" rendition, I will always be able to start from that same point, the next time I want a print worth saving of that image.
  We've gone, or I've gone, way off topic here, and I beg the indulgence of anyone else who might be reading this, hoping for a simple fix to the original simple problem.
  H

• Fix Bollixed security certificate setting for facebook?

  Hi, running ff 15.0.1 on winXP sp2:
  After months of using 'restart my computer' as a workaround for the "untrusted connection" error message that occasionally blocks all facebook access, I got disgusted a few days ago and tried to create an exception in the 'security certificates' dialog, but I was over my head and messed it up...
  ...I thought I was trying to create a blanket exception for www.facebook.com, but what i ended up with was FF REMOVING www.facebook.com from every FB url, so that when I tried to go to, say, www.facebook.com/my.name, I got an "Invalid URL" message stating that "The requested URL "/my.name", is invalid." :-(
  after struggling to figure out how to fix this by searching the forums, I found a recommendation to use 'clear recent history' to undo my mistake: I cleared the previous hour, and voila! problem solved, yay!
  alas, returning home from a weekend trip several days later, after browsing FB for about 30 minutes the problem has recurred, and 'clear recent history' doesn't solve it... I don't want to 'reset firefox' for various reasons. The thread at http://support.mozilla.org/en-US/questions/878694?s=clear+security+certificate+settings&r=7&as=s seems to offer a possible path to a solution but I'm having trouble sorting out the terms... is there a simple way to do something like 'revert to default security settings', or just find where my bad change is stored and reset or delete it? It seems like it should be a really straightforward 'undo' operation but I'm stymied, and don't want to mess things up even more: I have a lot of work going on in open facebook tabs and it would be a little tragic to lose it... any help? Thanks in advance!
  -kc

  I appreciate the educational links, Cor-el, but they seem like unsatisfying workarounds that disable key features of FF and/or FB without actually addressing my question, which was:
  "is there a simple way to do something like 'revert to default security-certificate settings', or just find where my bad change is stored and reset or delete it?" [without doing a "Reset FireFox"]
  ...the problem 'went away by itself' within an hour, but has recurred twice since then (for brief periods)
  Cor-el, I use autocomplete-url as a regular part of my navigation, and I LIKE having a secure connection to facebook, so I don't want to use these workarounds that disable key features of FF and don't actually address the 'wierd behavior'. Since I see that you're a big contributor in this forum, I'm guessing the fact that you offer no better suggestion than this may mean that we're looking at a bug or at least a major glitch. I acknowledge that this COULD be a FB issue, or even a "User is an idiot" issue, but I'm pretty sure it's a fouled path to re-edit my FF security-certificate settings.
  If anyone cares to review the original post and try again, I'll appreciate it. I consider this ticket still open :-)
  Thanks for all you do,
  -kc

• Power manager setting for battery on AC

  Hello,
  99% of the time I keep my T61 14" plugged into the wall and was wondering what the recommended battery settings would be in Power manager? I guess this mainly refers to the charge thresholds.  Currently I just have the checkbox selected that says "optimize for battery life".
  Thanks for any suggestions.
  -Paul
  T400 6475-8Q5 | 8GB RAM | WXGA+ | Seagate 500GB 7200 | Win 7 Pro 64-bit............T61 7658-CTR | 8GB RAM | WD Black 320GB

  If you want to maximize battery life it's best to remove the battery at around 40% charge and store it separately in a cool, dry location. Check it every few months and recharge it as necessary. If you leave the battery inside your ThinkPad, even with optimized recharge settings, the heat from the system will reduce battery life.
  See Battery University.
  Cheers... Dorian Hausman
  X1C2, TPT2, T430s, SL500, X61s, T60p, A21p, 770, 760ED... 5160, 5150... S360/30

• Cannot download Bovada software. After using it for a year or so, it started getting weird, so I trashed it and have not been able to download it since. My security is set for all. It downloads, but then the message comes that it isn't right for this

  Have a three yr old Mac Air and using Yosemite 10.10.1. Have used Bovada Poker software successfully for a long time. But it began to get weird so I trashed it. Now when I download, there is a white icon over the Bovada icon in the app folder and the message "You can’t open the application “BovadaPoker.app” because it is not supported on this type of Mac."
  Bovada doesn't seem to be able to help, although they acknowledge that some Mac users are having this problem. Is it Yosemite? What to do?

  Had the same problem...
  Saw some other (ssh) broblems beind discussed and tried the fix for them and it fixed my "You can’t open the application “BovadaPoker.app” because it is not supported on this type of Mac."
  Try this
  cd /Applications/BovadaPoker.app/Contents/
  sudo chmod g+rx BovadaPoker

• Start Tomcat 5.5 with Security Manager

  Recently, i have installed Tomcat version 5.5.8 but i have problem to start tomcat with a Securiy manager.
  For Tomcat version 4.xx we could start Tomcat with SecurityManager by using the "-security" option at "%CATALINA_HOME%\bin\startup.bat" after configured the catalina.policy file.
  But i couldn't do so at Tomcat 5.5.8. Any idea? Many Thanks.

  Start it yourself with
  java -Dcatalina.home=$CATALINA_HOME -Djava.security.manager -Djava.security.policy=="your.policy" -cp your.classpath org.apache.catalina.startup.Bootstrap
  Cheers,
  Arnaud

• Setting security manager

  Hi,
  I have a typical requirement which asks me to have a security manager which applies to only a part of the code and not to the whole code. I will try to explain it.
  Lets say I have a class A which does something (may be it accesses files, open socket connections over network etc etc). This class A is a sort of trusted class and is allowed to do everything. Now suppose this class is built in such a manner that it can load another class B at runtime which could be any class written by any third party. So what exactly class B will do cannot be predicted because it is a third party class. Now what I want is to set a security manager only for class B that will prevent it to do any nasty things like accessing file system, shutting down vm etc. . Please note that class A can do all these things but class B should not be allowed to do these. If class B tries to do any of those things then security exception should be thrown.
  Hope I made my point clear.
  Please note that I am not talking of Applets but complete application so pls dont forward any replies which applies to applets.
  Can anyone help pls........
  regards.

  Hey guys,
  crack_it:
  If you would rather dismiss the (A)pplication (P)rogramming (I)nterface then go ahead. No disrespect to the folks at O'Reilly, but reading the API is as good as hearing it from the horses mouth. If you could humour me, just test what the API says.
  I can't remember if we discussed it somewhere at some point, but I am under the impression you are locking-down you application designed in a plugin-architecture.
  If this is true, you simply need to specify two entries in your policy: one for your code in app_home/lib; one for third-party code in app_home/plugins. How you load these classes are irrelevant.
  As for detecting which classes trigger security checks, as mmhuda says, you can access the execution stack through the Thread class. You can retrieve information on the calling class and its method which made the call. These 'calls' are stacked i.e. most recent first. You may need to skip 3 or 4 frames (StackTraceElements) which represent the calls to access the stack information. It is troublesome. I recently implemented a similar method wihtin my Policy implementation to prevent it from being wrapped and exploited by other bogus policy implementations. I have a lookup of class.method --> class.method strings that represent permitted calls. All you would need to do is implement a lookup mapping class or class.method --> Permission or Permissions (PermissionCollection) containing what the class can do, and check against them.
  Now I have stated it, I am even more convinced; you are simply reimplementing the security infrastructure,or rather, shifting the function of the Policy and AccessController to your XxxxSecurityManager. Perhaps a waste of effort.
  mmhuda:
  Do not confuse terms; a class can be loaded and not in the execution stack - I wouldn't be surprised if a loaded class spends 99.99% of its life sitting idle off the stack. The stack represents a 'chain' of method calls for a particular Thread. It does not represent all the loaded classes in the JVM, otherwise the stack would be 100's of frames deep.
  Warm regards,
  D

• Searching for the Recording Security Manager utility

  The WLS v6.1 docs on managing security (http://edocs.beasys.com/wls/docs61/adminguide/cnfgsec.html#1074675)
  mentions a Recording Security Manager utility for detecting and resolving permission
  problems. Can someone point me to it?

  Hi Dan,
  Its available on the BEA developer center
  http://developer.bea.com/do_login.jsp
  You will need to have a login and password to access this site .
  Just search for Recording Security Manager and you will get the tool
  yeshwant
  Dan McHarness wrote:
  The WLS v6.1 docs on managing security (http://edocs.beasys.com/wls/docs61/adminguide/cnfgsec.html#1074675)
  mentions a Recording Security Manager utility for detecting and resolving permission
  problems. Can someone point me to it?

• Security manager: what is it for?

  Like title says...when sm is active I have to give explicit authorization for every sensible operation.
  Now, say in my program I want to open a socket: why introduce a security managar and tell it I want to open it?I mean...I need to open this socket, so it's obvious I'll give my ok and this goes for every sensible operation I'll need to do!
  Final user will have my program and use it: he/she can't modify my code and introduce some other sensible operation so I guess security manager is for me, the programmer...
  In the end I feel like building a wall and soon after pierce through it...so why to build it in the first place?
  What am I missing??

  The key thing to keep in mind is that the person creating a program and the person on running the program or on whose behalf the program is run are often not the same.
  Here is a sample flow.
  1. Person A create a program and for sensitive operation invoke the Security Manager (SM)
  2. Person B deploys the program in step 1. They may choose to run it with/without SM depending upon their risk analysis.
  3. Person B, deploys a policy for the program that might allow User A some operation, while not allowing the same operation to user B.
  While the default SM and the default Java Policy file is geared towards code source, there is support for subject based policy. Hope this helps.

• Security Manager/Access problem

  (WWC-00000)
  An unexpected error has occurred in portlet instances: wwpob_api_portlet_inst.create_inst (WWC-44846)
  The following error occurred during the call to Web provider: java.lang.NullPointerException
  at oracle.portal.provider.v2.security.URLSecurityManager.hasAccess(Unknown Source)
  at oracle.portal.provider.v2.DefaultPortletDefinition.hasAccess(Unknown Source)
  at oracle.portal.provider.v2.ProviderInstance.getPortletDefinition(Unknown Source)
  at oracle.portal.provider.v2.ProviderInstance.getPortletInstance(Unknown Source)
  at oracle.portal.provider.v2.ProviderInstance.getPortletInstance(Unknown Source)
  at oracle.webdb.provider.v2.adapter.soapV1.ProviderAdapter.registerPortlet(Unknown Source)
  at java.lang.reflect.Method.invoke(Native Method)
  at oracle.webdb.provider.v2.utils.soap.SOAPProcessor.doMethodCall(Unknown Source)
  at oracle.webdb.provider.v2.utils.soap.SOAPProcessor.processInternal(Unknown Source)
  at oracle.webdb.provider.v2.utils.soap.SOAPProcessor.process(Unknown Source)
  at oracle.webdb.provider.v2.adapter.SOAPServlet.doSOAPCall(Unknown Source)
  at oracle.webdb.provider.v2.adapter.SOAPServlet.service(Unknown Source)
  at javax.servlet.http.HttpServlet.service(HttpServlet.java:336)
  at com.evermind.server.http.ResourceFilterChain.doFilter(ResourceFilterChain.java:59)
  at oracle.security.jazn.oc4j.JAZNFilter.doFilter(JAZNFilter.java:283)
  at com.evermind.server.http.ServletRequestDispatcher.invoke(ServletRequestDispatcher.java:523)
  at com.evermind.server.http.ServletRequestDispatcher.forwardInternal(ServletRequestDispatcher.java:269)
  at com.evermind.server.http.HttpRequestHandler.processRequest(HttpRequestHandler.java:735)
  at com.evermind.server.http.AJPRequestHandler.run(AJPRequestHandler.java:151)
  at com.evermind.util.ThreadPoolThread.run(ThreadPoolThread.java:64)
  (WWC-43147)
  Removing the provider.xml security manager setting will do away with this problem.
  Versions being used: Portal 9.0.2 and PDK september.

  I have checked with PDK September samples related to Security Manager/Access and they are working fine. Please lets know for which PDK sample gives this error.