WebSphere Process Server messages     Operating Systems: All supported

SECJ

SECJ0007E: Error during security initialization. The exception is {0}.
Problem An unexpected error occurred during security initialization.
User response This is a general error. Look for previous messages that may be related to the failure or a configuration problem. Enabling security debug trace for components com.ibm.ws.security.* and com.ibm.ejs.security.* may yield additional information.
SECJ0010E: Invalid credential
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0040E: Error occurred while generating new LTPA keys. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0041E: Can't set Authentication Mechanism to LTPA when LTPAConfig is null
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0045E: Error initializing security/SAS
Problem An error occurred initializing the Secure Association Service which is part of the ORB security.
User response Verify the property file, usually sas.server.props, is present and has read permission.
SECJ0046I: SAS Property:{0} has been updated
Problem Informational.
User response A security configuration change has caused a SAS Property to be updated.
SECJ0047E: Missing or malformed security configuration URL specified by property {0}
Problem The URL used to specify Secure Association Service properties is missing or malformed.
User response The URL is usually specified as a property name when starting WebSphere from the command line with the -D argument. For example: -Dcom.ibm.CORBA.ConfigURL=file:/C:/wastd/AppServer/properties/sas.server.props. Verify that the property and URL is specified and refers to a valid file and the file has the read permission.
SECJ0048E: Error updating or loading future security configuration URL specified by property {0}
Problem The path or file specified in the property may be invalid or there could be a file permission problem.
User response Verify the path and file specified by the property is valid and the file has read permission.
SECJ0049E: Configuration error encountered while starting the server
Problem An unexpected RemoteException, OpException or IOException occurred during server startup. There could be problems with loading or writing of security configuration URL property files.
User response Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0050E: Error encountered while shutting down the server
Problem An unexpected RemoteException, OpException or IOException occurred during server shutdown. There could be problems with loading or writing of security configuration URL property files.
User response Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0051E: IOException when determining whether configuration is current with property file {0} or {1}
Problem A loadProperties() operation probably failed.
User response Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0052E: Authorization failed while invoking ({0}){1} {2} - invalid credentials
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0053E: Authorization failed for {0} while invoking ({1}){2} {3} {4}
Problem The user does not have the necessary permission to access the resource. This failure may be expected if the user should not be granted access. If this error is unexpected, then there are several possible causes. The user has not been mapped to one the roles protecting the resource if the user requires access to the protected resource. The user is not a member of one of the groups that may have been mapped to one of the roles. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
User response If the authorization failure is unexpected, verify the user, or a group that the user is a member of, is mapped to the role protecting the resource. Verify the WebSphere security LDAP user and group filters configuration match what the LDAP directory expects.
SECJ0054E: No own credentials
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0055E: Authentication failed for {0}. The user id or password may have been entered incorrectly or misspelled. The user id may not exist, the account could have expired or disabled. The password may have expired.
Problem The user could not be authenticated. The user id or password may have been entered incorrectly. The user may not exist in the user registry that WebSphere is configured to authenticate to. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
User response Verify that the user id and password are entered correctly and exist in the user registry. If LDAP is configured as the security user registry, verify the WebSphere security LDAP user and group filters configuration match what the LDAP directory expects. Consult with the administrator of the user registry that WebSphere is configured to use if the problem persist.
SECJ0056E: Authentication failed for reason {0}
Problem Authentication failed with the specified reason.
User response Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0057E: Invalid authentication data
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0058E: LTPAServer does not exist
Problem This is an internal error probably due to LTPAServer initialization problems.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0059E: Cannot create LTPAServer without a password
Problem The wrong constructor was used when trying to create an instance of LTPAServerBean.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0060E: LTPA configuration not found
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0061E: LTPAConfig creation exception
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0062E: LTPAConfig remove exception
Problem This is an internal error. The ejbRemove() operation failed on the LTPAConfigBean.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0063E: Credential mapping failed due to invalid access ID
Problem This is an internal error. Cannot get accessID from credential.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0064E: Credential mapping failed
Problem The credential mapping can fail for a number of reasons: The credential token is not an instance of a supported CredentialToken type for a mapping. The principal identified in the credential cannot be mapped to an entry or found in the user registry. A user registry exception occurs or if the user registry has been stopped.
User response Verify the user registry is operational. Verify the principal exist in the target user registry if appropriate. The exception reported with this error message may help diagnose the problem.
SECJ0065E: Unsupported encoding
Problem This is an internal error. An UnsupportedEncodingException occurred when the LTPAServer tried to encode the token value.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0066E: registry impl object has been stopped
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0067E: Cannot credential map given credential token for subject DN {0} into LDAP because of an LDAP filter mapping exception.
Problem The credential mapping can fail for a number of reasons: The credential token is not an instance of a supported CredentialToken type for a mapping. The principal identified in the credential cannot be mapped to an entry or found in the user registry. A user registry exception occurs or if the user registry has been stopped.
User response Verify the user registry is operational. Verify the principal exist in the target user registry if appropriate. The exception reported with this error message may help diagnose the problem.
SECJ0068E: LDAP initialization error. The exception is {0}.
Problem An unexpected exception occurred when configuring for LDAP.
User response Verify the WebSphere LDAP configuration settings such as the provider URL are correct in the Security Center GUI. If using SSL make sure the SSL configuration is correct.
SECJ0069E: Problem getting Security Name for privilege id: {0}. The exception is {1}.
Problem Cannot find a name for the specified SID in the Windows user registry.This can occur if a network time-out prevents the function from finding the name. It also occurs for SIDs that have no corresponding account name, such as a logon SID that identifies a logon session
User response WebSphere may still have a reference to the user in the authorization table but, that user may have been removed from the Windows user registry. If you know the user, remove it from any resource protection permissions in WebSphere. If the user is still valid, then it needs to be recreated in the Windows user registry and then reassigned to proper resource permissions in WebSphere.
SECJ0070E: No privilege id configured for: {0}
Problem Unable to find a SID for the specified user in the Windows user registry. The user may not exist in the user registry.
User response If appropriate create the user in the user registry.
SECJ0071E: Error retrieving registry entries for the given pattern {0}
Problem
User response Verify the pattern is correct and not malformed.
SECJ0072E: Error finding registry for type {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0073E: Error finding registry entry for privilege id {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0074E: Error creation user registry. The exception is {0}
Problem An unexpected exception occurred when trying to load or create the user registry.
User response Verify the CLASSPATH used to start WebSphere is correct and that the jar files have at least the read permission and exist.
SECJ0075E: Unsupported entry type {0}
Problem This is an internal error. A registry of the specified type could not be looked up.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0076E: Error creating registry entry home
Problem This is an internal error. Unable to create the home for the registry.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0077E: Registry impl class {0} not found for type {1}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0078E: User registry does not exist
Problem Unable to lookup RegistryHome in name space or narrow failed. The class for the user registry was not registered in the name space correctly or the class file for the user registry cannot be found.
User response Verify the classpath is correct and that the required classes exist.
SECJ0079E: User type not supported in the user registry
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0080E: User entry is not found in the registry
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0081E: Registry exception
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0082E: Error during web security initialization
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0083E: Error initializing web cache on admin server
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0084W: Error while initializing security web configuration. The exception is {0}.
Problem An error internal occurred while initializing the security attributes of a Web Application.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0085E: Error initializing admin web cache
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0086E: Configuration error
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0087E: Internal Server Error
Problem The HttpServletResponse indicates an Internal Server Error has occurred.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0088E: Error deleting permission
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0089E: Error obtaining all permissions
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0090E: Error obtaining method group for method {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0091E: Error looking up Application home
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0092E: Application home not found
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0093E: Relation home not found
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0094E: Admin Application does not exist
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0095E: Exception while initializing admin permissions
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0096E: Error creating method group {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0097E: Error finding method groups
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0098E: Error finding method group {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0099E: Error finding method group for id {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0100E: Error storing method group
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0101E: Error removing method group
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0102E: Error creating method group
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0103E: MethodGroupHome does not exist
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0104E: Error creating predefined method groups
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0105E: An unexpected exception occurred when decoding the value [{0}] for password [{1}] in the security configured URL
Problem The encoded password cannot be decoded because it is missing or malformed.
User response Verify the passwords in the security config URL are not corrupt or missing. Reset the affected password through the WebSphere Admin console if possible. If all else fails, reset the password to its plain text value in the security config URL (which is usually sas.server.props).
SECJ0106E: An unexpected exception occurred when encoding the value [{0}] for password [{1}] in the security configured URL
Problem The password cannot be encoded because it is missing or malformed.
User response Verify the passwords in the security config URL are not corrupt or missing. Reset the affected password through the WebSphere Admin console if possible. If all else fails, reset the password to its plain text value in the security config URL (which is usually sas.server.props).
SECJ0107W: The {0} file does not exist
Problem This exception is unexpected. The cause is not immediately known.
User response If this message is from a warning, then it is a temporary problem which is usually recovered from automatically. If it is not a warning, then check the file permissions for the file to ensure they are readable. If the file is missing, restore it.
SECJ0108E: Unexpected exception occurred when getting user registry or registry attributes.
Problem This exception is unexpected. The cause is not immediately known.
User response Verify that the user registry has been configured in WebSphere properly.
SECJ0109W: Recovering ({0}) from ({1})
Problem The security config URL is being recovered from the future version. This may happen if the security config URL is missing or has been deleted.
User response None
SECJ0110E: I/O Error occurred when loading property URL {0}
Problem A loadProperties() operation probably failed.
User response Verify the file permissions associated with security config URL property file (typically sas.server.props) are read and writable.
SECJ0111W: RunAsMap Not defined properly for Application {0}
Problem The run-as-bindings size is zero for this application.
User response Verify that the run-as bindings are specified for the application if necessary.
SECJ0112W: Authorization Table Not defined for Application {0}
Problem No security constraints or roles have been defined for this application.
User response If no security is necessary for this application then ignore this message. Otherwise, review the security requirements of this application.
SECJ0113E: An unexpected exception occurred in getRequiredRoles for method {0} and resource {1}. The exception is {2}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0114W: Unable to extract the security attributes from the credential
Problem The credential may be malformed or corrupt.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0115W: The credential has a null value for the public name
Problem The credential is possibly malformed or corrupt.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0116W: Unable to extract the credential token from the credential
Problem The credential is possibly malformed or corrupt.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0117E: Form login failed for user {0}
Problem The user could not be authenticated by the FormLogin Servlet. The user id or password may have been entered incorrectly. The user may not exist in the user registry that WebSphere is configured to authenticate to.
User response Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0118E: Authentication error during authentication for user {0}
Problem An unexpected error occurred during authentication.
User response This is an internal error. Look for previous messages that may be related to the failure.
SECJ0119E: Error getting the web app information for form login. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0120I: Trust Association Init loaded {0} interceptor(s)
Problem Reports the number of Trust Association interceptors that have been added.
User response None, informational only.
SECJ0121I: Trust Association Init class {0} loaded successfully
Problem Self Explanatory.
User response None, informational only.
SECJ0122I: Trust Association Init Interceptor signature: {0}
Problem Reports the signature of the Trust Association interceptor.
User response None, informational only.
SECJ0123E: Trust Association Init Error retrieving class loader. Trust Association cannot be enabled.
Problem getClassLoader() operation returned null.
User response Verify the appropriate Trust Association classes are installed and the classpath is correct.
SECJ0124E: Trust Association Init No interceptor class {0} found
Problem The interceptor class file specified in trustedservers.properties cannot be found.
User response Verify the appropriate Trust Association classes are installed and the classpath is correct. Also verify the class specified in the trustedservers.properties file and that the file has at least the read permission.
SECJ0125E: Trust Association Init Unable to load Trust Association class {0}.
Problem A ClassNotFoundException occurred when trying to load the subject class.
User response Verify the appropriate Trust Association classes are installed and the classpath is correct.
SECJ0126E: Trust Association failed during validation. The exception is {0}
Problem When the appropriate interceptor is found for a given request, that interceptor then validates its trust with the reverse proxy server. This error message suggests that the validation has failed and therefore the reverse proxy cannot be trusted. For example, an incorrect password may have been provided.
User response In a production environment, the user may be alerted to check if there is an intruder in the system. In a development environment in which testing is underway, verify if the expected inputs from the reverse proxy server is in fact being passed to the interceptor correctly. The nature of these inputs really depends on how trust association is being established. For example, the simplest method would be to pass a username/password through the Basic Authentication header.
SECJ0127E: Unable to find a valid user for Trust Association
Problem When the WebAuthenticator invoked an interceptor to return the authenticate username, no such username was returned.
User response Verify that the reverse proxy server is putting in the right username in the HTTP request before sending the request to WebSphere
SECJ0128E: An unexpected exception occurred during Trust Association. The exception is {0}.
Problem This refers to all other exceptions that can be possibly thrown by an interceptor, when validating trust with the reverse proxy server and when getting the authenticated username, aside from WebTrustAssociationFailedException and WebTrustAssociationUserException.
User response Debug the problem from the stack trace that is printed together with this error message. You can also turn on the debug trace to get more information about the nature of the exception.
SECJ0129E: Authorization failed for {0} while invoking {1} on {2}, {3}
Problem The user does not have the necessary permission to access the resource.
User response Contact your WebSphere security administrator if this is unexpected. The user must be mapped to one the roles protecting the resource if the user requires access to the protected resource.
SECJ0130E: Unable to get source path from request header 'via'
Problem When using WebSealTrustAssociationInterceptor, the "via" HTTP header in the HTTP Request object will be examined. This message appears when the value for this header is invalid or corrupted.
User response Make sure that WebSeal and/or the HTTP Server is properly working.
SECJ0131E: Authentication failed. Unable to get the mapped credential for SecOwnCredentials.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0132I: Java 2 Security is enabled
Problem Java 2 Security Manager is installed.
User response None, informational only.
SECJ0133E: Illegal {0} : {1}
Problem An illegal Permission was attempted. Only the main thread can set the security manager.
User response Verify the code that is trying to set the security manager is not trying to subvert the WebSphere security manager.
SECJ0134E: The current Java 2 Security policy does not permit the requested action.{0}Java 2 Security Permission: {1}, denied with exception message: {2}.{3}Violating code: {4}
Problem The Java Security Manager checkPermission() threw a SecurityException on the subject Permission.
User response Verify the attempted operation is permitted.
SECJ0135W: Illegal System.exit() attempted
Problem Only the main thread is allowed to exit the Java VM
User response Verify the code attempting the system exit is not trying to subvert the WebSphere security manager.
SECJ0136I: Custom Registry:{0} has been initialized
Problem Reports the Custom User Registry implementation that is being used.
User response None, informational only.
SECJ0137E: Could not get EnterpriseAppHome
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0138E: Failed to install the admin Application -
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0139E: Error to get initial naming context
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0140E: Failed to initialize Default SSL Settings
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0141E: Error to initialize default SSL configuration
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0145E: An unexpected exception occurred when decoding password in initial_ssl.properties
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0146I: ${WAS_HOME}/properties/initial_ssl.properties was not found
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0147E: Cannot credential map given credential token for certificate subject DN {0} into LDAP because of an LDAP filter mapping exception. The CertificateMapperException is {1}
Problem The Certificate mapping filter specified by the user in the global security settings is missing or malformed.
User response Review the certificate mapping filter configuration in the LDAP Advanced properties in the Security Center and verify it is present and correct.
SECJ0148E: Cannot credential map given credential token certificate subject DN {0} with filter {1} into LDAP because multiple entries match the filter. This ambiguous condition is not supported.
Problem More than one user entry in LDAP matched the certificate mapping filter specified in the global security settings. It is not possible to map a subjectDN in a certificate to more than one user in an LDAP user registry. The mapping filter results in an ambiguous condition that cannot be supported.
User response Specify a certificate mapping filter in the LDAP Advanced properties in the Security Center.
SECJ0149E: Cannot credential map given credential token for certificate subject DN {0} with filter {1} into LDAP because a NamingException occurred when searching LDAP. The NamingException is {2}
Problem A naming exception occurred when searching LDAP.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0150E: Cannot credential map given credential token for certificate subject DN {0} with filter {1} into LDAP because no entry in LDAP matches the DN or filter
Problem No entry in LDAP can be found with the subject DN in the certificate or found with the filter.
User response This may be the expected result depending on the subject DN in the certificate and filter. If the response is unexpected, review the certificate mapping filter defined in the LDAP advanced properties in the Security Center.
SECJ0151E: Cannot create a credential for the mapped credential token into LDAP with subjectDN {0} and mapped name {1} using filter {2}. The exception is {3}
Problem The DN in the certificate was successfully mapped to an entry in LDAP but, an unexpected exception occurred when trying to create a credential for the mapped entry.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0152W: SecurityLevel was either missing or set to a wrong value (valid values are: high, medium, low); default to high.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0153E: Invalid LDAP user ID
Problem Using invalid user ID or the user ID is not a directory entry. The directory administration ID (root DN) is not a directory entry on most LDAP servers.
User response Verify the user ID is a valid directory entry.
SECJ0154E: SSO Configuration error. FormLogin is configured for web application {0} but SSO is not enabled in the global security settings. SSO must be enabled to use FormLogin.
Problem When LTPA is the authentication mechanism SSO must also be enabled if any web applications use FORM login.
User response Enable SSO in the global security settings and restart WebSphere
SECJ0155E: Deployment descriptor configuration error. security-role-ref {0} in ejb-jar.xml is not mapped to any security role in bean {1}, module {2}, application {3}.
Problem A security role ref in the specified EJB's ejb-jar.xml file has not been mapped to a security role. This is a configuration error.
User response The security-role-ref in the EJB's ejb-jar.xml deployment descriptor should be mapped to a security role.
SECJ0156E: Unable to initialize user registry class {0} for type {1} due to exception: {2}
Problem The WebSphere security code couldn't find, load, or had problems loading the user registry class.
User response The exception mentioned in the message should provide additional clues including the class or file that could not be found or loaded. Verify the mentioned file exists in the correct directory and PATH.
SECJ0157I: Loaded Vendor AuthorizationTable: {0}
Problem The Vendor specified Authorization Table is loaded successfully.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0158I: Problem loading class {0}, using default authorization table provided by WebSphere
Problem The Vendor specified Authorization Table could not be loaded successfully. Therefore, using WebSphere provided authorization table.
User response Check to make sure that the Vendor's implementation of Authorization Table is in the CLASSPATH and could be loaded.
SECJ0159E: Cannot find class {0}
Problem The Vendor specified Authorization Table class could not be found in the CLASSPATH.
User response Check to make sure that the Vendor's implementation of Authorization Table as specified in sas.server.props is in the CLASSPATH.
SECJ0160E: Can not instantiate class {0}
Problem The Vendor specified Authorization Table class could not be instantiated.
User response Check to make sure that the Vendor's implementation of Authorization Table as specified in sas.server.props could be loaded and instantiated.
SECJ0161E: Error returned from Vendor AuthorizationTable. The exception is {0}
Problem The Vendor specified Authorization Table failed during authorization check.
User response Please look at Vendor's specific exception for details. If vendor's specific exception is not present, Contact your service representative with exception stack trace information present in the error log.
SECJ0162E: Vendor''s specific exception. The exception is {0} .
Problem This indicates the Vendor's specific error. Example:- Server not started, Network failure, Server failed.
User response Depends on the error.
SECJ0163E: Generic Error from Vendor AuthorizationTable
Problem Unknown error from Vendor's authorization table
User response Contact your service representative with exception stack trace information present in the error log.
SECJ0164E: Error number {0} while calling the operating system API {1}
Problem An error was returned by the operating system API
User response Depending on the API being called, please check the operating system specific documentation
SECJ0165W: Expand exception occurred. Skip the permission entry in app.policy file. The exception is {0}.
Problem While expanding the permission in application policy file, caught an expand exception
User response Check the permission entry syntax in application policy file.(app.policy or was.policy). To identify which policy file has problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show was.policy name.
SECJ0166W: Expand exception occurred. Skip the grant entry in app.policy file. The exception is {0}.
Problem While expanding the grant entry in application policy file, caught an expand exception
User response Check the grant entry syntax in your application policy file. (app.policy or was.policy). To identify which policy file has problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show was.policy name.
SECJ0167W: Expand exception occurred. Skip the permission entry in filter.policy file. The exception is {0}.
Problem While expanding the permission entry in filter.policy file, caught an expand exception
User response Check the permission entry syntax in filter policy file.
SECJ0168W: Keystore {0} of type {1} is being ignored
Problem Keystore of the above type is not supported.
User response Please use the supported type of keystores.
SECJ0169W: Expand exception occurred. Skip the permission entry. The exception is {0}
Problem While expanding the permission, caught an expand exception
User response Check the permission entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0170W: Expand exception occurred. Skip the grant entry. The exception is {0}.
Problem While expanding the grant entry, caught an expand exception
User response Check the grant entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0171W: Expand exception occurred. Skip the signedby key entry. The exception is {0}.
Problem While expanding the signedby entry, caught an expand exception
User response Check the signedby entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0172E: Error {0} in encoding the FilePath
Problem While encoding the FilePath, there was an error.
User response Please check the specified syntax. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0173W: Grant entry with codebase {0} and signedby {1} is being ignored
Problem In the system extension policy files, the grant entries should not specify codebase and signedby values
User response Please remove the codebase and signedby values from the grant entry in the system extension policy file. (spi.policy or library.policy)
SECJ0174W: Permission entry {0} is being ignored
Problem In the system extension policy files, the permission entries with signatures are not supported in the current version.
User response Please remove the signature values from the permission entry in the system extension policy file. (spi.policy or library.policy)
SECJ0175E: Caught an exception while retrieving data from the hashmap for the keyword {1}. The exception is {0}.
Problem The data stored for the keyword "type" in the hashmap is incorrect
User response This is an internal error. However, it could be caused by an incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0176E: Caught an exception while getting the policy template of type {1}. The exception is {0}.
Problem Could not retrieve the policy template of the above type.
User response This is an internal error. However, it could be caused by an incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0177W: Caught an exception while converting classpath {1} to URL. The exception is {0}.
Problem Could not convert the above classpath to a URL
User response Please check the classpath. Usually, this path was picked up from xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0178E: Caught an exception while retrieving the data from the hashmap for the keyword {1}. The exception is {0}.
Problem Could not retrieve the resource adaptor policy file from the hashmap passed to setupPolicy().
User response Please check the data stored in the hashmap for the resource adaptor keyword. It could be caused by incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0179E: Caught an exception while trying to get the Resource adaptor''s absolute file path. The exception is {0}.
Problem Could not get the absolute filepath of the resource adaptor policy file.
User response Please check the filepath specified in resource.xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0180E: Caught an exception while trying to get the data from the hashmap using the keyword {1}. The exception is {0}.
Problem Could not retrieve the deployed application policy file from the hashmap passed to setupPolicy().
User response This is an internal error. However, it could be caused by incorrect data in xml file. Please check the type of the policy file and the hashmap being passed to setupPolicy(). Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0181W: Caught an exception while trying to get the resource adaptor module {1} absolute filepath. The exception is {0}.
Problem Could not get the resource adaptor module's absolute filepath.
User response It could be caused by incorrect data in resources.xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0182W: Caught an exception while trying to get the Canonical path for the file {1}. The exception is {0}.
Problem Could not get the Canonical path for the specified file
User response Please check the specified file name passed to security. It could be caused by incorrect data in xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0183W: Caught an exception while trying to convert the filepath {1} to URL. The exception is {0}.
Problem Could not convert the specified filepath to URL.
User response Please check the specified filepath. It could be caused by incorrect data in xml file.Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0184W: Caught an exception while trying to get the absolute path for the resource adaptor {1} in removePolicy(). The exception is {0}.
Problem Could not get the absolute path for the resource adaptor in removePolicy().
User response Please check the specified path. It could be caused by incorrect data in xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0185W: Caught an exception while trying to get the absolute path for the module {1} in removePolicy(). The exception is {0}
Problem Could not get the absolute path for the module in removePolicy().
User response Please check the specified path. It could be caused by incorrect data in xml file.Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0186E: Caught IOException while creating template for System Extension Policy of type {1} The exception is {0}
Problem IOException occurred when creating the system extension template in the hashmap of all the templates.
User response Please check the IOException to see the cause for not being able to create the system extension template in the hashmap.
SECJ0187E: Caught ParserException while creating template for System Extension Policy of type {1} The exception is.{0}
Problem ParserException occurred when creating the system extension template in the hashmap of all the templates.
User response Please check the ParserException data. Check the specified policy file.
SECJ0188E: Caught IOException while creating template for Application Policy {0}. The exception is {1}.
Problem IOException occurred when creating the application policy template in the hashmap of all the templates.
User response Please check the specified policy file.
SECJ0189E: Caught ParserException while creating template for Application Policy {0}. The exception is {1}.
Problem ParserException occurred when creating the application policy template in the hashmap of all the templates.
User response Please check the ParserException data. Check the specified policy file.
SECJ0190E: Caught IOException while creating template for was.policy {0}. The exception is {1}.
Problem IOException occurred when putting the was.policy template in the hashmap of all the templates.
User response Please check the specified was.policy file.
SECJ0191E: Caught ParserException while creating template for was.policy {0} . The exception is {1}.
Problem ParserException occurred when putting the was.policy template in the hashmap of all the templates.
User response Please check the ParserException data. Check the specified was.policy file.
SECJ0192E: Caught IOException while creating template for resource adaptor(read from WCCM) {1}. The exception is {0}.
Problem IOException occurred when creating the resource adaptor template in the hashmap of all the templates.
User response Please check the specified ra.xml file's permission specification.
SECJ0193E: Caught ParserException while creating template for resource adaptor(read from ra.xml) {0}. The line is [{1}]. The exception is {2}.
Problem ParserException occurred when putting the resource adaptor template in the hashmap of all the templates.
User response Please check the ParserException data. Check the ra.xml's permission specification.
SECJ0194E: Caught IOException while adding permission to the set of filtered permissions. The exception is {0}.
Problem IOException occurred when adding permission to the set of filtered permissions.
User response Please check the filter.policy file.
SECJ0195E: Caught ParserException while adding permission to the set of filtered permissions. The exception is {0}.
Problem ParserException occurred when adding permission to the set of filtered permissions.
User response Please check the ParserException data.
SECJ0196W: Custom permission {0} is being used in an application policy file {1}
Problem Custom permission is being used in an application policy file.
User response Please make sure that it is all right to use a custom permission in an application policy file.
SECJ0197E: Caught Invocation TargetException while constructing the permission object. This exception might be due to syntax error in the policy file. The exception is {0}.
Problem Invocation TargetException occurred while constructing the permission object.
User response Please check the exception.
SECJ0198E: Caught an exception while constructing the permission object. The exception is {0}.
Problem An Exception occurred while constructing the permission object.
User response Please check the exception.
SECJ0199E: Caught an IOException while adding the grant entry to the policy template of the resource adaptor {1} . The exception is {0}.
Problem An IOException occurred while adding the grant entry to the policy template of the resource adaptor.
User response Please check the specified ra.xml file.
SECJ0200E: Caught a ParserException while adding the grant entry {1} to the policy template of the resource adaptor {0}. The exception is {2}.
Problem A ParserException occurred while adding the grant entry to the policy template of the resource adaptor.
User response Please check the syntax of permission specification in the specified ra.xml
SECJ0201I: Error number {0} while calling the operating system API {1}
Problem The above error number was returned by the above API.
User response Depending on the API being called, please check the operating system documentation for the API.
SECJ0202I: Admin application initialized successfully
Problem The Admin application initialized successfully
User response None. Informational only.
SECJ0203I: Naming application initialized successfully
Problem The Naming application initialized successfully
User response None. Informational only.
SECJ0204I: Rolebased authorizer initialized successfully
Problem The Rolebased authorizer initialized successfully
User response None. Informational only.
SECJ0205I: Security Admin mBean registered successfully
Problem The Security Admin mBean registered successfully
User response None. Informational only.
SECJ0206E: Error creating or registering {0} mBean. The exception is {1}
Problem An unexpected exception occurred when trying to create or register an mBean.
User response There may be a problem with the configuration. The exception may include details.
SECJ0207E: Failed to load {0} resource from cell. The exception is {1}
Problem The specified resource could not be loaded due to an exception.
User response The failure may be related to a configuration problem related to the resource.
SECJ0208E: An unexpected exception occurred when attempting to authenticate the server''s id during security initialization. The exception is {0}.
Problem The userId and password specified for the server's identity when configuring global security could not be used to authenticate the server.
User response Verify that the userId and password are valid and meet the requirements for the user registry or authentication mechanism.
SECJ0209E: An unexpected exception occurred when attempting to update the JAAS login configuration with WCCM JAAS configuration information. The exception is {0}
Problem The WCCM JAAS login configuration information could not be pushed to the JAAS configuration object.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0210I: Security enabled {0}
Problem Reports current security enabled or disabled status.
User response None. Informational only
SECJ0211E: Failed to lookup or rebind security server with name {0}. The exception is {1}.
Problem An unexpected error occurred. It could be that the Cell Manager or Node Agent are not started.
User response If a remote security server was specified when enabling global security, verify that the Node Agent and Cell Manager are running.
SECJ0212I: WCCM JAAS configuration information successfully pushed to login provider class.
Problem The WCCM JAAS login configuration information was pushed to the JAAS configuration object.
User response None. Informational only.
SECJ0213E: Unexpected JAAS login provider class {0} is currently configured. The expected configured class is {1}. When WebSphere security is enabled, this class is required.
Problem WebSphere provides an implementation of javax.security.auth.login.Configuration and dynamically installs this class at server startup. Either some application code has installed a different login provider class or a problem occurred when WebSphere tried to dynamically install the class.
User response Check for other server startup warning or error messages.
SECJ0214W: Unexpected JAAS login provider class {0} is currently configured. The expected configured class is {1}. When WebSphere security is enabled, this class is required.
Problem WebSphere provides an implementation of javax.security.auth.login.Configuration and dynamically installs this class at server startup. Either some application code has installed a different login provider class or a problem occurred when WebSphere tried to dynamically install the class.
User response Check for other server startup warning or error messages.
SECJ0215I: Successfully set JAAS login provider configuration class to {0}.
Problem WebSphere provides an implementation of the javax.security.auth.login.Configuration class. This class was successfully set at server startup.
User response None. Informational only.
SECJ0216E: An exception occurred when setting JAAS login provider configuration class to {0}. The exception is {1}.
Problem WebSphere provides an implementation of the javax.security.auth.login.Configuration class. This class could not be set at server startup.
User response Configuration.class may not be present. This is an internal error.
SECJ0217W: Detected a duplicate JAAS LoginModule alias name {0} when processing JAAS configuration information.
Problem A duplicate JAAS LoginModule alias name exist either in a JAAS login URL or in the security.xml file. The duplicate will be replaced with the last one processed.
User response Verify no duplicate JAAS LoginModule aliases exist in the login URLs or in the security.xml file.
SECJ0218E: Exception caught retrieving RoleBasedAuthorizer. The exception is {0}.
Problem The Rolebased authorizer could not be retrieved due to an exception.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0219E: Unable to get or use role based authorizer because application {0} has not been loaded.
Problem The application must be loaded for the role base authorizer can be used to enforce authorization.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0220W: The role based authorizer for module {0} has already been loaded.
Problem The role based authorizer will load only once per module.
User response None, informational only.
SECJ0221E: An unexpected exception occurred in findMatchingMethod for method {0} and bean {1}, the exception is {2}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0222E: An unexpected exception occurred when trying to create a LoginContext. The LoginModule alias is {0} and the exception is {1}.
Problem A JAAS LoginContext could not be created due to the unexpected exception.
User response The problem could be due to a configuration error.
SECJ0223E: User {0} authenticated successfully but unable to send redirect to the original request page. The {1} cookie is not present.
Problem The HTTP cookie that contains the originally requested page was not found.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0224E: An unexpected exception occurred when trying to configure the security related web attributes for web applications {0}. The exception is {1}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0225W: PD Authentication disabled.
Problem PD Authentication disabled.
User response None, informational only.
SECJ0226E: The LocalOS server ID ({0}) should not be the same value as the LocalOS realm ({1}) in the security.xml.
Problem When the LocalOS server ID is equal to the LocalOS realm, the access ID returned by the operating system is the machine ID not the server ID.
User response Make sure that the server ID is different from the machine ID.
SECJ0227E: An exception occurred when creating class of type {0}. The exception is {1}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0228E: Object of type {0} is null.
Problem Object created by reflection is null.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0229E: Method {0} of object of {1} type is null.
Problem Method returned by reflection is null.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0230E: Invoking reflection method {0} of object type {1} throws exception {2}.
Problem Reflection method invocation failed.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0231I: The Security component''s FFDC Diagnostic Module {0} registered successfully: {1}.
Problem Describes whether or not the Security component's FFDC Diagnostic module was successfully registered.
User response None. Informational only.
SECJ0232E: An unexpected exception occurred when trying to get the User Registry from the Security Server. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0233E: An unexpected exception occurred when trying to get users from the User Registry with pattern {0} and limit {1}. The exception is {2}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0234E: An unexpected exception occurred when trying to get groups from the User Registry with pattern {0} and limit {1}. The exception is {2}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0235E: An unexpected exception occurred when trying to export the LTPA Keys from the security mbean. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0236E: An unexpected exception occurred when trying to import the LTPA Keys from the security mbean with properties {0}. The exception is {1}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0237E: One or more vital LTPAServerObject configuration attributes are null or not available. The attributes and values are password : {0}, expiration time {1}, private key {2}, public key {3}, and shared key {4}.
Problem LTPA is the configurated authentication mechanism but it has not yet been properly configured. Keys or other LTPA configuration attributes are missing.
User response Disable WebSphere security, restart the application server and properly configure LTPA authentication.
SECJ0238E: An unexpected exception occurred when trying to create the initial LTPAServerObject. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0239I: Security service initialization started
Problem Security service initialization started.
User response None. Informational only
SECJ0240I: Security service initialization completed successfully
Problem Security service initialization started.
User response None. Informational only
SECJ0241I: Security service initialization completed successfully
Problem Security service initialization started.
User response None. Informational only
SECJ0242I: Security service is starting
Problem Security service started.
User response None. Informational only
SECJ0243I: Security service started successfully
Problem Security service started.
User response None. Informational only
SECJ0244I: Security service failed to start successfully
Problem Security service started.
User response None. Informational only
SECJ0245E: An unexpected exception occurred when the SecurityServerFactory tried to create the SecurityServer. The exception is {0}.
Problem An error occurred that prevented the SecurityServer from being created.
User response The log should contain additional errors that may indicate the cause of the problem.
SECJ0246E: Caught unexpected exception in retrieving ORB SSL settings {0}
Problem An unexpected exception occurred retrieving the ORB SSL settings.
User response Verify the property file, usually sas.server.props contents. Contact your service representative if the problem persists.
SECJ0247I: ORB SSL Key File or Passwords settings were missing in server-cfg.xml
Problem ORB SSL Key File or Passwords settings were missing in server-cfg.xml
User response Verify the server-cfg.xml file.
SECJ0248I: Caught unexpected exception in retrieving ORB SSL initialization. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0249E: Failed to cleanup. The exception is {0}.
Problem An unexpected exception occurred while clean up of specified repository.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0250E: Error creating security server. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0251E: Error getting Initial Naming Context. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0252E: Error getting remote security server. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0253E: Generic Exception while getting remote security server. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0254E: Error getting Initial Naming Context. The exception is {0}.
Problem javax.naming.NamingException occurred when getting Initial Naming Context.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0255E: Error creating security server/ The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0256E: Error binding SecurityServer to naming. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0257E: Failed to find security server in name space. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0258E: Cannot find user registry. The exception is {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0259E: IOException from CallbackHandler. The exception is {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0260E: Unsupported {0} callback in CallbackHandler. The exception is {1}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0261E: Something wrong during LoginModule commit. The exception is {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0262E: Exception occurred when removing {0} during cleanup. The exception is {1}
Problem Unexpected exception occurred when removing the specified principal during cleanup.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0263E: Exception occurred when removing WSCredential during cleanup. The exception is {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0264E: fillAccessids: Error getting user registry. The exception is {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0265E: removeAccessIds: Error getting user registry. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0266E: Failed to create a new web attribute.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0267E: Failed to get RoleBasedConfigurator. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0268E: Problem loading class {0}, using default authorization table provided by WebSphere
Problem The Vendor specified Authorization Table could not be loaded successfully. Therefore, using WebSphere provided authorization table.
User response Check to make sure that the Vendor's implementation of Authorization Table is in the CLASSPATH and could be loaded.
SECJ0269E: Failed to get actual credentials. The exception is {0}.
Problem java.lang.reflect.InvocationTargetException occurred when try to execute getActualCredential() method.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0270E: Failed to get actual credentials. The exception is {0}.
Problem Unexpected exception occurred when try to execute getActualCredential() method.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0271E: Error restoring original credentials.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0272E: Error setting to system credentials.
Problem Unexpected exception occurred while restoring original credentials.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0273E: Failed to load SecurityServer.xml. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0274E: Error getting Initial Naming Context. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0275E: Error trying to find user registry. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0276E: BasicAuthData credential is already destroyed. The exception is {0}.
Problem CredentialDestroyedException occurred while trying to get BasicAuthData. The credential was already destroyed.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0277E: BasicAuthData credential is already expired. The exception is {0}.
Problem javax.security.auth.login.CredentialExpiredException occurred while trying to get BasicAuthData.
User response refresh the credential.
SECJ0278E: TokenData credential is already destroyed. The exception is {0}.
Problem CredentialDestroyedException occurred while trying to get credential token. The credential was already destroyed.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0279E: TokenData credential is already expired. The exception is {0}.
Problem javax.security.auth.login.CredentialExpiredException occurred while trying to get token.
User response refresh the credential.
SECJ0280E: Error getting realm from registry. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0281E: Error creating user registry object. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0282E: Error getting initial context. The exception is {0}.
Problem javax.naming.NamingException occurred while getting the initial naming context.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0283E: Error binding User Registry. The exception is {0}.
Problem javax.naming.NamingException occurred while rebinding the user registry.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0284E: Error trying to find User Registry. The exception is {0}.
Problem javax.naming.NamingException occurred while finding the user registry.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0285E: Failed to retrieve RoleBasedAuthorizer. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0286W: Error during security initialization.
Problem Unexpected exception occurred when initializing security server component.
User response None. This is warning.
SECJ0287E: Failed to call setupPolicy for {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0288E: Error during security initialization.
Problem Unexpected exception occurred when updating authorization table.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0289E: Failed to call removePolicy for {0}.
Problem Unexpected exception occurred when trying to call removePolicy() for specified type.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0290W: All subjects assigned to Special role DenyAllRole for application {0} are removed.
Problem All subjects assigned to Special role DenyAllRole for the specified application are removed.
User response None. This is a warning.
SECJ0291E: Failed to retrieve the information of Resource Adapter for provider ( {0} ) to call setupPolicy().
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0292E: Failed to retrieve the information of Resource Adapter of {0} to call setupPolicy().
Problem Unexpected exception occurred when trying to retrieve the information of Resource Adapter to call setupPolicy().
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0293E: No registry.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0294E: Error setting properties to file ({0}). The exception is {1}.
Problem IOException occurred when setting properties to specified file.
User response Verify if the property file exist, or the permission.
SECJ0295E: Error getting properties to file ({0}). The exception is {1}.
Problem IOException occurred when getting properties to specified file.
User response Verify if the property file exist, or the permission.
SECJ0296E: Error checking password for user :{0}. The exception is {1}.
Problem com.ibm.websphere.security.PasswordCheckFailedException occurred when checking the password for specified user.
User response Verify the password for the specified user.
SECJ0297E: Error checking password for user :{0}. The exception is {1}.
Problem com.ibm.websphere.security.CustomRegitryException exception occurred when checking the password for specified user.
User response Verify the password for the specified user.
SECJ0298E: Error checking password for user :{0}. The exception is {1}.
Problem Unknown exception occurred when checking the password for specified user.
User response Verify the password for the specified user.
SECJ0299E: Caught an exception while decoding the file path: {0}. The exception is {1}.
Problem Failed to decode the specified file. The details is shown in the exception.
User response Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0300W: The file or directory ( {0} ) does not exist.
Problem The specified file or directory does not exist.
User response Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0301W: Failed to convert a file path {0} to CodeSource. The exception is {1}
Problem MalformedURLException occurred when trying to convert the specified path to URL.
User response Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0302W: No alias name for {0}.
Problem This configuration does not have any alias name.
User response This is warning.
SECJ0303E: Error getting registry''s realm. The exception is {0}
Problem Exception occurred when getting registry's realm.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0304E: Cannot get user registry. The exception is {0}.
Problem Unexpected exception occurred when getting user registry.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0305I: The role-based authorization check failed for {0} operation {1}:{2}. The user {3} (unique ID: {4}) was not granted any of the following required roles: {5}.
Problem The caller does not have the necessary permission, this problem can occur because no credential is found on the thread, the caller is not authenticated, or the accessId might be null.
User response If the failure is unexpected, verify that the caller has been granted the required role.
SECJ0306E: No received or invocation credential exist on the thread. The Role based authorization check will not have an accessId of the caller to check. The parameters are: access check method {0} on resource {1} and module {2}. The stack trace is {3}.
Problem No invocation or received credentials were established on this thread. This may cause the role based authorization check to fail.
User response The stack trace is obtained by a local throw catch block that maybe useful for debugging the problem.
SECJ0307E: Unexpected exception is caught when trying to determine the code base location. Exception: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0308I: Java2 security is installed.
Problem JAVA2 security is enabled.
User response None, informational only.
SECJ0309I: Java 2 Security is disabled.
Problem Java 2 Security Manager is NOT installed.
User response None, informational only.
SECJ0310E: Caught a ParserException while adding the grant entry to the policy template {1}. The exception is {0}
Problem A ParserException occurred while adding the grant entry to the policy template.
User response Please check the ParserException data. Please check the specified policy file.
SECJ0311W: Caught an exception while trying to get the module {1} absolute filepath. The exception is {0}.
Problem Could not get the module's absolute filepath.
User response Please check the filepath given to load the module.
SECJ0312W: {$Application} phrase should not include ${was.module.path} keyword.
Problem Syntax error in the policy file. ${Application} phrase should not include ${was.module.path} keyword. This entry is ignored.
User response Please check the application policy file.
SECJ0313I: Java 2 Security Manager debug message flags are initialized: TrDebug: {0}, Access: {1}, Stack: {2}, Failure: {3}, Rethrow {4}
Problem This message provides the current value of the java.security.debug property which is used to enable various debug information related to Java 2 Security.
User response None, this is informational only.
SECJ0314W: Current Java 2 Security policy reported a potential violation of Java 2 Security Permission. Please refer to InfoCenter for further information.{0}Permission:{1}Code:{2}{3}Stack Trace:{4}Code Base Location:{5}
Problem The Java Security Manager checkPermission() threw a SecurityException on the subject Permission. A caller on the call stack does not have the required permission. This may not be a problem if the caller properly handles this exception.
User response Verify the attempted operation is permitted by examining all Java 2 security policy files and application code. Additional permissions may be required, a doPrivileged API may be needed in some code on the call stack, or the Security Manager properly prevented access to a resource the caller does not have permission to access.
SECJ0315W: The permission {0} specified in the application policy file:{1} does not exist.
Problem The permission class {0} specified in the application policy file(was.policy or app.policy) does not exist.
User response Please fix the specified application policy file.
SECJ0316W: The permission {0} specified in the filter policy file(filter.policy) does not exist.
Problem The permission class {0} specified in the filter policy file does not exist.
User response Please fix the filter policy file.
SECJ0317W: The permission {0} specified in the application policy file({1}) is a part of the permission {2} specified in filter.policy.
Problem The permission class {0} specified in the application policy is not be removed. However, it is a part of the permission specified in filter.policy.
User response If the permission should be filtered out, divide the permission specified in the application policy.
SECJ0318I: The permission {0} specified in the application policy file({1}) were filtered out.
Problem The permission {0} specified in the application policy was removed because filer.policy has the same entry.
User response none. This is an informational message.
SECJ0319I: java.security.AllPermission was found in the application policy file {0}.
Problem java.securityAllPermission was found in the application.
User response none. This is an informational message.
SECJ0320E: Error parsing {0}: {1}
Problem There is a syntax error in the policy file.
User response Please use ${java.home}/jre/bin/policytool to verify the syntax or edit the policy file and correct the syntax error.
SECJ0321E: Role based authorization is caller in role failed for security name {0}, accessId {1}, and role name {2}.
Problem The caller does not have the necessary permission, there was no credential on the thread, the caller is not authenticated, or the accessId could be null.
User response If the failure is unexpected, verify the caller has been granted the required role.
SECJ0322W: Missing attribute in Security Configuration.
Problem Required attribute CertificateFilter is missing. Certificate Filter is required when CertificateMapMode is CERTIFICATE_FILTER.
User response Set CertificateFilter in the advanced LDAP settings.
SECJ0323E: Invalid LDAP user/group ID
Problem Using invalid user/group ID or the user/group ID is not a directory entry. The directory administration ID (root DN) is not a directory entry on most LDAP servers.
User response Verify the user/group ID is a valid directory entry.
SECJ0324E: Error during Java 2 Security and Dynamic Policy initialization. The exception is {0}.
Problem An unexpected error occurred during Java 2 Security and Dynamic Policy initialization.
User response This is a general error. Look for previous messages that may be related to the failure or a configuration problem. Enabling security debug trace for security component com.ibm.ws.security.* may yield additional information.
SECJ0325W: The permission {0} specified in the policy file {1} is unresolved.
Problem The permission class {0} specified in the policy file was not loaded.
User response Please confirm that the specified permission in then policy file is correct. If permission class is incorrect, this warning is issued.
SECJ0326E: No received or invocation credential exist on the thread. The Role based authorization check will not have an accessId of the caller to check. The parameters are: role name {0}. The stack trace is {1}.
Problem No invocation or received credentials were established on this thread. This may cause the role based authorization check to fail.
User response The stack trace is obtained by a local throw catch block that may be useful for debugging the problem.
SECJ0327E: Problem loading the registry properties file. The exception is {0}.
Problem Unexpected exception occurred when loading registry properties file.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0328E: Registry implementation file is missing.
Problem Cannot locate the registry implementation file.
User response If you are using a Custom Registry make sure that your provide the registry implementation file in the GUI or in the scripting (whichever is being used). If you are using WAS supplied registries contact your service representative if the problem persists.
SECJ0329E: The registry implementation file {0} is not a instance of the supported user registries.
Problem This can happen when using custom registries and if they are not instances of UserRegistry or CustomRegistry.
User response Make sure you implement the UserRegistry interface for your custom registry.
SECJ0330E: The registry implementation file {0} cannot be loaded because of the following exception {1}
Problem This can happen when the specified custom registry cannot be loaded.
User response The custom registry implementation file should be in the classpath as mentioned in the custom user registry section in the InfoCenter. If this happens for WAS provided registries contact your service representative if the problem persists.
SECJ0331E: The registry implementation file {0} cannot be initialized because of the following exception {1}
Problem The specified custom registry implementation cannot be initialized.
User response Make sure all the properties required for the custom registry initialization are passed through GUI or scripting (whichever is being used).If this happens for WAS provided registries contact your service representative if the problem persists.
SECJ0332E: The checkPassword method failed for user {0}.
Problem The checkPassword method failed to return a user.
User response If using WAS provided registries this problem should have preceeded with other authentication related exception(s). Look into them to fix the actual authentication problem. In addition if a custom registry is being used make sure you return a valid userId after a successful authentication.
SECJ0333E: The mapCertificate method failed.
Problem The mapCertificate method failed to return a user from the certificate chain.
User response Make sure the certificate should contain a valid user in the registry. This problem should have preceeded with other exception(s). Looking into them would help in narrowing down the problem. In addition if a custom registry is being used make sure you return a valid userId after successfully mapping the certificate.
SECJ0334E: Cannot create credential for null user.
Problem Internal Error. The user name provided to create the credential is null.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0335E: Authentication failed for user {0}.
Problem The registry failed to return a user after authentication.
User response This would happen if the authentication was not successful and the custom registry did not throw exceptions to indicate this. Make sure you are entering a current userID and password for authentication. This problem might have preceeded by other problems. Looking at those problems might narrow the problem down.
SECJ0336E: Authentication failed for user {0} because of the following exception {1}
Problem Authentication failed with the specified reason.
User response Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0337E: The mapCertificate method is not supported.
Problem Internal Error.
User response Information purposes only.
SECJ0338E: The following error occurs when getting the display name of the group {0}, {1}.
Problem Error getting display name of a group.
User response Make sure the group is valid and has a display name.
SECJ0339E: Could not get the display name of the group {0}.
Problem Problem getting display name of a group.
User response Make sure the group is valid and has a display name.
SECJ0340E: Could not get the uniqueId for the group {0}.
Problem Problem getting uniqueId of a group.
User response Make sure the group is valid in the registry and if it is a custom registry make sure it also has an uniqueId.
SECJ0341E: Could not get the uniqueId for the group {0} because of the following exception {1}.
Problem Problem getting uniqueId of a group.
User response Make sure the group is valid in the registry and if it is a custom registry make sure it also has an uniqueId.
SECJ0342E: Could not get the groups matching the pattern {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the groups matching the pattern exist in the registry. Contact your service representative if the problem persists.
SECJ0343E: Could not get the groups that the user {0} belongs to.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0344E: Could not get the groups that the user {0} belongs to because of the following exception {1}.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0345E: Could not get the users in the group {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0346E: Could not get the name of the group whose uniqueId is {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0347E: Could not get the name of the group whose uniqueId is {0}.
Problem Internal Error.
User response Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0348E: Could not get the display name of the user {0}.
Problem Internal Error.
User response Make sure the user is valid and has a display name. Contact your service representative if the problem persists.
SECJ0349E: Could not get the display name of the user {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the user is valid and has a display name. Contact your service representative if the problem persists.
SECJ0350E: Could not get the uniqueId of the user {0}.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0351E: Could not get the uniqueId of the user {0} due to the following exception {1}.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0352E: Could not get the users matching the pattern {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the users matching the pattern exist in the registry. Contact your service representative if the problem persists.
SECJ0353E: Could not get the name of the user whose uniqueId is {0}.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0354E: Could not get the name of the user whose uniqueId is {0} because of the following exception {1}.
Problem Internal Error.
User response Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0355E: Validating the group {0} throws the following exception {1}.
Problem Internal Error.
User response Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0356E: Could not get the realm for the registry in windows.
Problem Not able to get the hostname of the Windows machine or the domain controller.
User response Make sure that the user who is running WAS has administrative and "act as part of operating system" privilege in the Windows machine and also an administrator in the domain machine. Contact your service representative if the problem persists.
SECJ0357E: The registry initialization failed with the following exception {0}.
Problem Registry cannot be initialized. Internal Error.
User response Make sure that the user who is running WAS has administrative and "act as part of operating system" privilege in the Windows machine and also an administrator in the domain machine. Contact your service representative if the problem persists.
SECJ0358E: Validating the user {0} throws the following exception {1}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0359E: Could not get the uniqueId for {0} because of the following exception {1}.
Problem Problem getting uniqueId of a user/group.
User response Make sure that the user or group is valid in the registry and if it is a custom registry make sure an uniqueId exists for user or group.
SECJ0360E: Authentication failed for {0} because multiple users matched the user.
Problem Authentication failed because multiple users found in the registry with the same name.
User response When using LDAP make sure that shortname used for the user is unique. For example, if "uid" is used as the shortname make sure the uid are unique in the registry.
SECJ0361E: Authentication failed for {0} because user is not found in the registry.
Problem Authentication failed because of non existent user.
User response Make sure the user is valid in the registry. When using LDAP make sure that the user is searchable. The admin id in some LDAP servers may not be searchable.
SECJ0362E: Cannot create credential for the user {0}.
Problem Cannot find user to create credential.
User response Make sure the user is valid in the registry. Contact your service representative if the problem persists.
SECJ0363E: Cannot create credential for the user {0} because of the following exception {1}.
Problem Cannot create credential.
User response Make sure the user is valid in the registry. If this is preceeded by other exceptions look into them to narrow down the problem. Contact your service representative if the problem persists.
SECJ0364E: Cannot initialize ltpa object because of the following exception {0}.
Problem The LTPA server object cannot be initialized.
User response The primary reason this happens is because the ltpa keys cannot be decrypted using the ltpa password. This happens because the password that is used to encrypt the keys is not same one that is saved in the repository.The server may not come up when this problem occurs. If this happens disable security, start the server, enter a new password for LTPA, save it, generate the keys, do another save to save the keys, turn on security, stop and restart the server. Contact your service representative if the problem persists.
SECJ0365E: Cannot create security object during initialization.
Problem Cannot create the security object from repository. Internal Error.
User response The security.xml might be corrupted or missing. Contact your service representative.
SECJ0366E: Cannot obtain the WAS process type during initialization.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0367W: Warning, LTPA is configured as the authentication mechanism but SSO is disabled. Web applications that use FormBased Login, including the WebSphere web based admin console, may not work correctly.
Problem SSO is required for FormBased logon to work in Web applications when LTPA is the authentication mechanism.
User response If this is the intended configuration then ignore this warning. If this is not the intended configuration, then the enabled attribute of Single Signon element in the security.xml must be set to the true value.
SECJ0368E: No such LTPA Algorithm. The exception is {0}.
Problem This is an internal error. A NoSuchAlgorithmException occurred when the LTPAServer tried to sign the token.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0369E: Authentication failed when using LTPA. The exception is {0}.
Problem Authentication has failed when using LTPA.
User response There could be multiple reasons why this might have occurred. Most of the time this should have preceeded with other exceptions that will indicate what the exact problem is. This might occur if the userName and/or password are incorrect, if the setup of the registry is not valid. If problems persist contact your service representative.
SECJ0370E: Validation of the token failed because the token is null.
Problem Cannot validate the token since the token is null.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0371W: Validation of the LTPA token failed because the token expired with the following info: {0}.
Problem Cannot validate the token since the token has expired.
User response Once the token time out is reached, the token will not be validated and the user has to authenticate again. This is normal. Make sure that all the WebSphere nodes and cell(s) are synchronized with respect to time, date and time zone. One can change the token expiration time if required.
SECJ0372E: Validation of the inbound LTPA token failed. The configured LTPA keys are probably not the ones that generated the token signature.
Problem It's likely the LTPA keys are not the correct ones to verify the signature of the token.
User response This would happen if the keys encrypting the token are not the same as the ones decrypting. If a new set of keys were generated this is an expected error as the tokens signed with old keys will not work anymore. Otherwise, contact your service representative if the problem persists.
SECJ0373E: Cannot create credential for the user {0} due to failed validation of the LTPA token. The exception is {1}.
Problem Internal Error. Cannot create a credential after the token is validated.
User response This is typically due to an expired token or a token created with different LTPA keys. If the token is expired, you might need to increase the LTPA timeout, if necessary. If the keys are not the same, ensure one set of LTPA keys are used in all cells that interopate, or ensure that a newly added node has synchronized.
SECJ0374E: The accessID in the token contains the wrong type. It should be either user or group. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0375E: Mismatch of realms during token validation.
Problem The realm in the token does not match the current realm.
User response This error can occur when a token is passed between one cell to another cell and the realm do not match in these cells. If using LDAP make sure that both cells use the same host name and port number.
SECJ0376E: Error importing LTPA keys. The exception is {0}.
Problem Cannot import LTPA keys.
User response This occurs when the password used to import the keys does not match the password that encrypted the keys. Make sure that the password is the same. If problem persists, contact your service representative.
SECJ0377E: Error exporting LTPA keys. The exception is {0}.
Problem Cannot export LTPA keys.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0378E: Cannot get SecurityServer in the security MBean.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0379E: Cannot get LTPAServer in the security MBean.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0380W: The keystore or truststore type specified is invalid. Adjusting to use the correct type, however, please correct the SSL configuration for performance reasons.
Problem The keystore or truststore type specified is invalid.
User response Modify the SSL configuration so that the keystore or truststore type is a valid type. You can check the keystore and truststore types by loading them in WebSphere's IKeyMan tool.
SECJ0381I: Warning, the com.ibm.websphere.java2secman.norethrow property is true. The WebSphere Java 2 Security Manager is not rethrowing AccessControl exceptions. This debug setting should not be used in a production environment. Please see the InfoCenter for Java 2 Security debugging features.
Problem The com.ibm.websphere.java2secman.norethrow property, when it has a true value, instructs the Java 2 Security Manager to NOT rethrow AccessControl exceptions. This property is intented to aid developers when preparing their application for Java 2 Security. When this property value is true, the Security Manager only reports the AccessControl exception but does not rethrow or propagate the exception up the call stack. This may permit applications to access resources that would they would not otherwise have access to. This property should not be specified in a production environment, only in a debug or application development environment.
User response If this message is unexpected or the application is running in a production environment, remove the com.ibm.ws.java2secman.norethrow property setting unless you understand the consequences.
SECJ0382I: The alias {0} from the server level security has not been updated to the cell.
Problem Informational.
User response During the server and the cell security object merging, if a same alias name exists in both, the alias will not be copied to the cell configuration. This is as designed. In the normal circumstance this should not happen since the alias names are unique. However, if a removeNode has been performed prior to the addNode, one might see this message as the removeNode will not remove the exisintg aliases. Also, if the alias names in the security.xml file was manually changed this message will show up if the aliases match.
SECJ0383I: Proceeding with merging the server's security configuration with the cell's for this Application Server.
Problem Informational.
User response This message shows up when the Application Server contains its own security configuration that needs to be merged with cell level configuration.
SECJ0384E: Trust Association Init Error. The Trust Association interceptor implementation {0} initialization failed. The error status/exception is {1}.
Problem The initialization of this Trust Association implementation failed.
User response Verify that the appropriate Trust Association properties required for the initialization are set up correctly. If you are using your own implementation check your initilization method for any problems. If a single Trust Association implementation is used, this would indicate that the Trust Association will not be in effect. However, if multiple TrustAssociation implementations are used, Trust Association can be in effect if one of the implementations succeeds.
SECJ0385W: Cannot find and load the FIPS approved IBM JSSE or JCE providers. This may be a problem if your environment must use FIPS approved cryptographic algorithms and you are not using your own FIPS approved providers. The error status/exception is {0}.
Problem Cannot find and load the FIPS approved IBM JSSE or JCE providers. It is a problem in the case when IBM FIPS approved JCE provider is missing because WAS depends on it when requiring to use FIPS approved provider. Missing FIPS approved IBM JSSE provider may not be a problem provided that you have configured ito use your own FIPS approved JSSE provider.
User response Make sure that the missing provider jar, if needed, is in the JDK ext directory.
SECJ0386I: Initializing registry to use Tivoli Access Manager for authentication.
Problem Authenticaton will be perfomed using Tivoli Access Manager. This requires that WebSphere is configured to use an external Tivoli Access Manager server.
User response None, informational only.
SECJ0387E: Error getting the PolicyConfiguration object for the contextID {0}. The exception is {1}.
Problem Could not get the JACC provider PolicyConfiguration object. This object is required to propagate the security constraints information to the provider.
User response Make sure that the JACC provider property javax.security.jacc.PolicyConfigurationFactory.provider is set correctly to the PolicyConfigurationFactory implementation class. The preferred way to set this property is to use the JACC configuration properties panel or wsadmin tool. Also make sure that the provider classes are in the classpath of all the servers.
SECJ0388E: Problem getting the PolicyConfiguration inService status. The exception is {1}.
Problem The policy configuration object status could not be determined. Access will not be granted to this module.
User response The module in question might be in the process of being deleted. If problem persists, contact your service representative.
SECJ0389E: Problem getting the PolicyContext key {0}. The exception is {1}.
Problem The policy context key cannot be obtained to make the access decision.
User response Make sure that the Policy Context Key in question is registered by the container.
SECJ0390E: Error when caling isCallerInRole for role {0}. The exception is {1}.
Problem Cannot determine the isCallerInRole because of the exception. Default is to return false. Make sure that the security role-ref information is correct.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0391E: Error when setting the Policy object to the provider''s policy implementation {0}. The exception is {1}.
Problem The provider's policy implementation cannot be loaded because of the exception.
User response Make sure the JACC provider properties are set correctly and the provider classes are in the classpath. If problem persists, contact your service representative.
SECJ0392E: Error when checking the dataconstraint requirement for the contextID {0}. The exception is {1}.
Problem Could not determine the dataconstraint requirements for this resource. The request will be denied.
User response Make sure the dataconstraint requirements are correctly configured in the deployment descriptor.
SECJ0393E: Error when checking the isUserInRole requirement for the contextID {0}. The exception is {1}.
Problem Could not determine the isUserInRole requirements for this resource. The default value false will be returned
User response Make sure the RoleRef information is correctly configured in the deployment descriptor.
SECJ0394E: Principal exists in Subject returned by TAI.getSubject() but it does not implement java.security.Principal.
Problem The Trust Association Interceptor did not have the correct principal in the Subject. The principal must implement java.security.Principal.
User response Contact the provider of the Trust Association Interceptor to ensure this problem gets resolved.
SECJ0395E: Could not locate the SecurityServer at host/port:{0} to validate the userid and password entered. You may need to specify valid securityServerHost/Port in ${WAS_INSTALL_ROOT}/profiles/profile_name/properties/sas.client.props file.
Problem A SecurityServer could not be located for login.
User response In some cases it is necessary to specify a valid bootstrap host/port in the com.ibm.CSI.securityServerHost and com.ibm.CSI.securityServerPort properties in the ${WAS_INSTALL_ROOT}/profiles/profile_name/properties/sas.client.props file. See sas.client.props for details.
SECJ0396E: Error updating information to the JACC provider for application {0}. The exception is {1}.
Problem Cannot provide the security policy information to the JACC provider because of the exception. Without this information the authorization decisions, cannot be made correctly when security is enabled.
User response Make sure the JACC provider is properly configured and can be accessed. After the problem is fixed, either re-install the application or run the propagatePolicyToJACCProvider tool to propagate the policy information to the JACC provider. For more information about this tool, search for propagatePolicyToJaccProvider in the WebSphere Application Server Information Center.
SECJ0397W: Error removing information from the JACC provider for application {0}. The exception is {1}.
Problem Cannot delete the security policy information from the JACC provider because of the exception. This problem creates redundant information in the JACC provider.
User response Make sure the JACC provider is properly configured and can be accessed. The JACC provider might have tools to remove this information.
SECJ0398E: Error updating information to the JACC provider for application {0}. The exception is {1}.
Problem Cannot provide the security policy information to the JACC provider because of the exception. Without this information, the authorization decisions cannot be made correctly when security is enabled.
User response Make sure the JACC provider is properly configured and can be accessed. After the problem is fixed, one can either re-install the application or run the propagatePolicyToJACCProvider tool to propagate the policy information to the JACC provider. For more information about this tool, search for propagatePolicyToJaccProvider in the WebSphere Application Server Information Center. If the modification involved removing any modules, you can delete the information in the JACC provider to avoid redundant data.
SECJ0399E: Error updating deployment.xml information with the appContextIDForSecurity for application {0}. The exception is {1}.
Problem The appContextIDForSecurity atribute is required when using JACC as the authorization.
User response If JACC will not be used for authorization then this should not impact anything. If JACC will be used for authorization, contact your IBM representative if this problem persists.
SECJ0400I: Successfuly updated the application {0} with the appContextIDForSecurity information.
Problem Information only.
User response Information only.
SECJ0401E: Error getting the WebModuleMetaData or missing metadata for context root {0}. The exception is {1}.
Problem This is an internal error. Without the meta data, the moduleName and applicationName cannot be obtained for access decisions.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0402E: Error getting the RoleConfiguration object for the contextID {0}. The exception is {1}.
Problem Could not get the JACC provider RoleConfiguration object. This object is required to propagate the authorizationTable information to the provider.
User response If the authorizationTable information is required by the provider, make sure the JACC provider properties related to the RoleConfigurationFactoryImplClass is set correctly. Also make sure that the implementation classes are in the classpath of all the servers.
SECJ0403E: The PolicyConfiguration object for the contextID {0} is null.
Problem Could not get the JACC provider PolicyConfiguration object. This object is required to propagate the security constraints information to the provider.
User response Make sure that the JACC provider property javax.security.jacc.PolicyConfigurationFactory.provider is set correctly to the PolicyConfigurationFactory implementation class. The preferred way to set this property is to use the JACC configuration properties panel or wsadmin tool. Also make sure that the provider classes are in the classpath of all the servers.
SECJ0404E: The {0} object is null.
Problem Could not get the object required for security policy propagation.
User response Make sure that the JACC provider properties are set correctly in the JACC configuration. Also make sure that all the provider classes are in the classpath of all the servers.
SECJ0405E: The {0} object cannot be obtained because of the following error {1}.
Problem Could not get the object required for security policy propagation.
User response Make sure that the JACC provider properties are set correctly in the JACC configuration. Also make sure that all the provider classes are in the classpath of all the servers.
SECJ0406E: Cannot obtain the earFile for application {0}.
Problem The earFile is required to get the security policy information for the application. The config repository might be corrupted.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0407E: Cannot obtain the application name for propagating the security constraints to the provider.
Problem The appname is required to propagate the security policy information to the provider.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0408E: An exception occurred when removing the security policy information from the provider for application {0} during uninstall. The exception is {1}.
Problem Because of an exception, the security policy information may not have been removed completely from the provider during the application uninstall.
User response Make sure that the provider is up and running and the JACC configuration is correct. One can use the tools provided by the provider to remove the security policy information manully from the provider's repository.
SECJ0409E: An exception occurred when propagating the security policy information for application {0} to the JACC provider. The exception is {1}.
Problem Because of an exception, the security policy information may not have been propapated to the provider during the application install.
User response Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0410E: An exception occurred when updating the security policy information for application {0} to the JACC provider. The exception is {1}.
Problem Because of an exception, the security policy information may not have been updated to the provider during the application update.
User response Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0411E: An exception occurred when getting the authorization provider object from the configuration. The exception is {1}.
Problem Because of an exception, the security policy information may not have been updated to the provider.
User response Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0412E: An Error occured when initializing the initialization class {0} of the JACC provider. The exception or the error code is {1}.
Problem The initialization implementation of the provider failed with an exception or a non-zero error code.
User response Verify that the JACC provider properties are correctly set and that the initialization classes are in the class path. Check the provider implementation for problems. An error code of zero (0) indicates success.
SECJ0413I: The JACC provider is successfully initialized with the following setup. The policy class name is {0}. The PolicyConfigurationFactory class name is {1}. The optional RoleConfigurationFactory call name is {2}. The optional initialization class name is {3}.
Problem This message is provided for information purposes only.
User response No user action is required.
SECJ0414W: FIPS is enabled but the IBMJCEFIPS provider is not active in the java.security file. To ensure FIPS algorithms usage for all WAS process types, uncomment the IBMJCEFIPS provider in the java.security file, ahead of the IBMJCE, and renumber the provider list in sequential order.
Problem When the server is running in FIPS mode the IBMJCEFIPS provider should be in the java.security file.
User response The java.security file needs to be changed to include the IBMJCEFIPS provider in the provider list before the IBMJCE provider.
SECJ0415I: The security policy for application {0} is successfully propagated to the JACC provider.
Problem This message is provided for information purposes only.
User response No user action is required.
SECJ0416I: The security policy for application {0} is successfully removed from the JACC provider.
Problem This message is provided for information purposes only.
User response No user action is required.
SECJ0417I: FIPS is enabled.
Problem The server is running in FIPS mode, using the IBMJCEFIPS provider.
User response No user action is required.
SECJ0418E: The LDAP configuration information is incorrect. {0}
Problem The most likely cause of this error is an invalidly formed hostname or IP address in LDAP configuration settings.
User response Correct the configured LDAP host or IP address.
SECJ0422I: During addNode from node "{0}" the default node certificate did not exchange it''s signer with the cell default truststore. This may cause a handshake failure when the cell tries to communicate with the node. Manual signer exchange may need to occur.
Problem It's likely the TrustStore named CellDefaultTrustStore or KeyStore named NodeDefaultKeyStore does not exist in the configuration.
User response The node's signer certificates need to be added to the cell's truststores.
SECJ0423I: During addNode from node "{0}" the default cell certificate did not exchange it''s signer with the node default truststore. This may cause a handshake failure when the node agent starts up. Manual signer exchange may need to occur.
Problem It's likely the TrustStore named NodeDefaultTrustStore or KeyStore named CellDefaultKeyStore does not exist in the configuration.
User response The cell's signer certificates need to be added to the node's truststores.
SECJ0424E: During addNode from node "{0}" the default keystore and truststore were not already created. An attempt to create them on the DMGR failed with exception: {1}.
Problem The creation of keystore and truststore with self-signed certificate failed.
User response The node agent did not have certificates created when it was federated into the cell. The attempt to create them during addNode failed.
SECJ4000E: JAAS Login Exception occurred at {0}.
Problem JAAS Login exception occurred while refreshing the credential.
User response Please confirm user id, password and realm information are correct. If you still see the problem, contact your service representative with exception stack trace information present in the error log.
SECJ4001E: Login failed for {0}/{1} {2}
Problem Authentication can fail for many reasons. The user or password may not have been entered correctly, misspelled for instance. The user account may not exist, may have expired, or be disabled. The password may have expired or require a change at first logon. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
User response Confirm if the user information(realm name, user name, password) is valid. Try authenticating the user directly to the configured user registry outside of WebSphere authentication to verify the user and password are valid in the user registry. The WebSphere InfoCenter documents additional user account requirements for certain user registries.
SECJ4002E: No CORBA Credentials for {0}/{1}
Problem Authentication failure occurred while invoking login() of realm/user since there is no CORBA credential.
User response Confirm if the user information(realm name, user name password) is valid.
SECJ4003E: Credential token login is not valid for LocalOS
Problem JAAS Login failure occurred while invoking login() with token for LocalOS.
User response LocalOS does not support login with token. Please make sure the application program is valid.
SECJ4004E: Login failed for credential token {0}
Problem JAAS Login failure occurred while invoking login() with token.
User response Please check the user authenticate data is correct. Enabling security debug trace will provide the details.(com.ibm.ws.security.auth.* )
SECJ4005E: No CORBA Credentials for credential token
Problem JAAS Login returned null credential while invoking login() with token. There is no CORBA Credential.
User response login returned null Credential. Please check the user application how it authenticate. Enabling security debug trace will provide the details.(com.ibm.ws.security.auth.* )
SECJ4006E: Invalid Credential Type {0}
Problem Getting the JAAS subject from CORBA credential failed with exception.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4007E: Not suppose to construct WSLoginHelperImpl object
Problem WSLoginHelperImpl object instance should not be constructed.
User response Check the user application. WSLoginHelperImpl should not be directly constructed.
SECJ4008E: Missing some of the authentication data
Problem Some of the authentication data is missing.
User response Check the next message. It identifies what is missing.
SECJ4009E: Either user name, realm or password data is missing.
Problem User name, realm name or password is missing.
User response Confirm the necessary authentication data is passed. Enabling security debug trace for component com.ibm.ws.security.auth.* may yield additional information.
SECJ4010E: Credential Token is null or empty array
Problem Credential token is missing.
User response Confirm the necessary authentication data is passed.
SECJ4011E: com.ibm.ejs.oa.EJSORB.getORBInstance() returns null
Problem com.ibm.ejs.oa.EJSORB.getORBInstance() returns null
User response Please check if ORB is initialized correctly in user application.
SECJ4012E: Error getting SecurityCurrent from the ORB {0}
Problem Getting security current caused an exception.
User response Please check if ORB is initialized correctly in user application.
SECJ4013E: An unexpected IOexception occurred in Login Module {0} CallbackHandler. The exception is {1}
Problem Exception occurred while processing callbacks
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4014E: Login Module {0} detected unsupported {1} callback in CallbackHandler {2}
Problem Unsupported Exception occurred while processing callbacks
User response Check the application. Contact your service representative with exception stack trace information present in the error log if the problem persists.
SECJ4015E: An unexpected exception occurred during the JAAS login commit action in Login Module {0}. The exception is {1}.
Problem Exception occurred while committing LoginModule
User response Check the application. Contact your service representative with exception stack trace information present in the error log if the problem persists.
SECJ4016E: An unexpected exception occurred in Login Module {0} when removing principal {1} during cleanup. The exception is {2}
Problem Exception occurred while removing the principal.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4017E: An unexpected exception occurred in Login Module {0} when removing WSCredential during cleanup {1}
Problem Exception occurred while removing the credential.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4018E: Removing CORBA Credential during cleanup {0}
Problem Exception occurred while removing CORBA credential.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4019E: Not supposed to construct Util object
Problem Util object instance should not be constructed.
User response Check the user application. Util should not be directly constructed.
SECJ4020E: CORBA: Invalid Attribute Type: {0} {1}
Problem CORBA credential has invalid attribute.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4021E: CORBA: Duplicate Attribute Type: {0} {1}
Problem CORBA credential has duplicate attributes.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4022E: CORBA: Not suppose to construct CredentialsHelper object
Problem CredentialsHelper object instance should not be constructed.
User response Check the user application. CredentialsHelper should not be directly constructed.
SECJ4023E: Failed to create a Configuration instance.
Problem Failed to create a configuration instance
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4024W: {0} :Warning: getAppConfigurationEntry() was called with no configuration name.
Problem getAppConfigurationEntry() was called with null string.
User response Check the parameter if it is called from user application. If not, Contact your service representative.
SECJ4025E: unable to get system input stream {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4026W: WSDefaultPrincipalMapping() should not be invoked.
Problem WSDefaultPrincipalMapping() should not be invoked.
User response This is warning. Check the user application. WSDefaultPrincipalMappingshould not be directly constructed.
SECJ4027W: {0} does not exist, use {1} wsj2cdpm.properties
Problem Specified file did not exist. Use the default file.
User response This is warning. Check the specified file name.
SECJ4028E: Unexpected Exception caught in new URL {0} : Exception is {1}
Problem Unexpected exception occurred while creating a new URL.
User response Check the specified URL. Contact your service representative with exception stack trace information present in the error log.
SECJ4029E: Unexpected Exception caught in openStream URL {0} : Exception is {1}
Problem Unexpected Exception occurred while opening an URL.
User response Check the specified URL. Contact your service representative with exception stack trace information present in the error log.
SECJ4030E: Unrecognizable Callback index = {0} {1}
Problem Unrecognizable Callback is passed.
User response Contact your service representative with information present in the error log.
SECJ4031E: Unexpected IOException caught {0}
Problem Unexpected IOException was caught while processing callbacks.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4032E: Method {0} detected missing or malformed data when trying to perform conversion. The data item name is {1} and value is {2}.
Problem Internal problem related to malformed or corrupt data storage.
User response Contact your service representative with exception stack trace information present in the error log.
SECJ4033E: The LoginContext does not contain a Subject after authenticating user {0} with LoginModule alias {1}.
Problem The LoginModule did not create a Subject. There is a problem with the LoginModule
User response This problem could be due to a configuration error in security.xml or an internal error.
SECJ4034I: Token Login failed. If the failure is due to an expiring token, verify the system date and time of the WebSphere nodes are synchronized or consider increasing the token timeout value. Authentication mechanism {0} and exception is {1}
Problem Token Authentication failure may be caused by an expired token, invalid token or a date or time synchronization problem between WebSphere nodes. Web browsers often cache WebSphere SSO cookies which contain the token to validate. These tokens do expire.
User response Token validation failures are not always unexpected given that tokens can expire. May consider increasing timeout value or verifying that the system date and time between WebSphere nodes is synchronized.
SECJ4035E: {0} :ERROR: Could not get System property: {1}
Problem Failed to get the specified property.
User response Please check if you defined the specified property correctly.
SECJ4036E: {0} : Error: An exception occurred when trying to reflect on or invoke convertMapToString(). The exception is {1}
Problem Exception occurred trying to reflect on or invoke convertMapToString().
User response Please investigate the exception. Check classpath.
SECJ4037E: {0} :ERROR: Could not open URL: {1}. The exception is {2}
Problem MalformedURLException occurred trying to connect the specified URL.
User response Please investigate the exception. Check the specified URL.
SECJ4038E: {0} :ERROR: Could not create URL: {1}. The exception is {2}
Problem IOException occurred trying to connect the specified URL.
User response Please investigate the exception. Check the specified URL.
SECJ4039E: {0} :ERROR: A file parser exception occurred with file : {1}. The exception is {2}
Problem IOException occurred trying to connect the specified URL.
User response Please investigate the exception. Check the specified URL.
SECJ4040W: {0} :Warning: update() method passed either a null or empty string.
Problem null or empty string was passed to update() method.
User response This is a warning.
SECJ4041E: {0} :ERROR: Could not create or open StringReader: {1}. The exception is {2}.
Problem Could not create or open the specified StringReader.
User response Please investigate the exception.
SECJ4042E: {0} :ERROR: A file parser exception occurred with file : {1}. The exception is {2}
Problem IOException occurred trying to connect the specified stringreader.
User response Please investigate the exception. Check the specified string.
SECJ4043W: {0} :Warning: An unexpected IOException occurred when closing a stream.
Problem Unexpected IOException occurred trying to close a stream.
User response This is a warning.
SECJ4044E: WCCM jaas objects is not yet load.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4045E: {0} : Error: An exception occurred when trying to reflect on or invoke convertMapToString(). The exception is {1}
Problem Exception occurred trying to reflect on or invoke convertMapToString().
User response Please investigate the exception. Check classpath.
SECJ4046E: Duplicate login config name {0}. Will over write.
Problem Duplicate login config name was specified in the configuration data.
User response Please check the configuration data.
SECJ4047E: IOException occurred during parsing jaas application configuration. The exception is {0}
Problem IOException occurred during parsing jaas application configuration.
User response Please check the configuration file. Please investigate the exception.
SECJ4048E: ParserException occurred during parsing jaas application configuration. The exception is {0}
Problem ParserException occurred during parsing jaas application configuration.
User response Please investigate the exception. It has the information of syntax error in the configuration file.
SECJ4049E: Error creating credential from registry object. The exception is {0}.
Problem Unexpected exception occurred while creating and initializing the user registry.
User response Check the application and the registry set up. Contact your service representative if the problem persist.
SECJ4050E: An unexpected exception is caught: {0}.
Problem Unexpected exception occurred while restoring the credential.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4051E: PrivilegedActionException is caught while serialized Subject is being restored. The exception is {0}.
Problem PrivilegedActionException occurred while restoring the credential. This exception is a wrapper of the exception thrown in doPrivileged block.
User response Please investigate the real source of the exception. Contact your service representative if the problem persist.
SECJ4052E: InvalidCredentialType exception is caught while serialized Subject is being restored. The exception is {0}.
Problem InvalidCredentialType exception occurred while restoring the credential.
User response Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4053E: InvalidCredential exception is caught while serialized Subject is being restored. The exception is {0}.
Problem InvalidCredentialType exception occurred while restoring the credential.
User response Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4054E: InvalidCredentialType exception is caught while serialized Subject is being restored. The exception is {0}.
Problem InvalidCredentialType exception occurred while restoring the credential.
User response Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4055E: InvalidCredential exception is caught while serialized Subject is being restored. The exception is {0}.
Problem InvalidCredentialType exception occurred while restoring the credential.
User response Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4056E: Error getting initial context. The exception is {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4057I: WSMappingCallbackHandlerFactory implementation class {0} not defined.
Problem WSMappingCallbackHandlerFactory implementation class may be defined in security.xml to customize Mapping CallbackHandler. This is not an error condition. When the implementation class is not defined, a default WebSphere implementation will be used.
User response No action is required unless one wants to override the WebSphere default WSMappingCallbackHandlerFactory implementation.
SECJ4058E: WSDefaultPrincipalMapping Initialization failed. The exception is {0}.
Problem WSDefaultPrincipalMapping initialization failed. The JCA container managed principal/credential mapping most likely will not work properly.
User response Examine the cause of the exception and correct the problem. the most likely reason is the WSMappingCallbackHandlerFactory implementation class was not configured properly.
SECJ4059W: WSDefaultPrincipalMapping Initialization failed. Fall back to use WSMappingCallbackHandler.
Problem WSDefaultPrincipalMapping initialization failed. The JCA container managed principal/credential mapping most likely will not work properly.
User response Examine the cause of the exception and correct the problem. the most likely reason is the WSMappingCallbackHandlerFactory implementation class was not configured properly.
SECJ4060W: Cannot find parameter {0} that may be needed by Mapping LoginModules.
Problem Either the custom properties HashMap or the authentication data alias was not defined.
User response This may or may not be a problem depending on the particilau mapping LoginModules.
SECJ4061W: Exception {0} was thrown during mapping.
Problem An exception was throan by the WebSphere default principal/credential mapping function.
User response This is most likely caused by incorrect authentcaiton data configuration.
SECJ4062W: Cannot find the credential information.
Problem WebSphere default principal/credential mapping function could not find the specified credential information.
User response This is most likely caused by incorrect authentication data configuration.
SECJ4063E: Exception {0} caught in processing callback {1}
Problem Unexpected problem occured when processing a WAS V5 mapping callback type.
User response Contact your service representative with information present in the error log.
SECJ4064E: Trust state information missing in shared state, unable to perform identity assertion.
Problem A Custom Login module must be provided and configured prior to this login module in the JAAS Login Configuration and should have provided trust information in shared state.
User response Please check a Custom Login Module is provided and configured prior to this login module in the JAAS Login Configuration and make sure the shared state information is set correctly based on the requirement.
SECJ4065W: Principal and X509Certificate provided in the trust information, using the principal.
Problem Both a principal and X509Certificate are provided in the trust information, the principal has priority and will be used for the login.
User response If login with the X509Certificate is desired then the principal should not be passed in the trust information.
SECJ4066E: Could not find identity to perform identity assertion.
Problem A Custom Login module must provide an identity to perform identity assertion.
User response Please check a Custom Login module to make sure an idenity is provided to the perform identity assertion.
SECJ5000E: The following exception occurred while creating the attribute propagation token: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5001E: The following exception occurred while creating the attribute propagation token holder list from the authorization token: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5002W: An error occurred while serializing the custom object {0} from the current Subject. This does not cause the request to fail but this custom object will not get propagated.
Problem The object mentioned above probably does not implement the java.io.Serializable interface.
User response Ensure the object implements the java.io.Serializable interface to ensure it gets propagated downstream.
SECJ5003W: An error occurred while de-serializing a custom object from the inbound authorization token. This does not cause the request to fail but this custom object will not get restored in the inbound Subject.
Problem The object failed to de-serialize at the target server. The likely cause is the implementation class is not present on the target server or the Java class version between the sending server and target server is different.
User response Ensure the correct java class exists at the target server.
SECJ5004W: Trying to add propagation token name {0} and version {1} that already exists on the thread. The existing PropagationToken is returned and will not be overwritten.
Problem Cannot overwrite an existing PropagationToken. The existing one is returned, so use it to set new attributes given the proper permission.
User response Check the addPropagationToken SPI for the value returned. A null value indicates this is the first time the token is added. A non-null value indicates you are setting the token again which is not allowed. Use the returned value to add new attributes.
SECJ5005E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.uniqueId property value.
Problem The com.ibm.wsspi.security.cred.uniqueId property has not been found during a properties login attempt.
User response Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.uniqueId.
SECJ5006E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.securityName property value.
Problem The com.ibm.wsspi.security.cred.securityName property has not been found during a properties login attempt.
User response Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.securityName.
SECJ5007E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.longSecurityName property value.
Problem The com.ibm.wsspi.security.cred.longSecurityName property has not been found during a properties login attempt.
User response Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.longSecurityName.
SECJ5008W: The realm specified in com.ibm.wsspi.security.cred.realm ({0}) does not match the current realm ({1}). This could cause problems when trying to make a downstream request.
Problem The realm specified does not match the current security realm of this server. This could cause problems when trying to go downstream to another server on the same current realm.
User response If a different realm is desired, set the supportedTargetRealms field to include the new realm you are specifying in order to go outbound to servers in the current realm.
SECJ5009E: Could not create a WSCredential given the information provided during a propagation login. The following exception occurred: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5010E: Could not create default AuthenticationToken during propagation login. The following exception occurred: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5011E: Could not create default AuthorizationToken during propagation login. The following exception occurred: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5012E: Could not create default SingleSignonToken during propagation login. The following exception occurred: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5013E: Could not create default SingleSignonToken during propagation login. The following exception occurred: {0}
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5014E: Could not find the factory class {0} specified for this token. The exception is {1}.
Problem The LTPA TokenFactory implementation is likely not present in the classpath.
User response Ensure the LTPA TokenFactory implementation is located in the WebSphere classpath. Typically these implementations are put in the ${WAS_INSTALL_ROOT}/classes directory.
SECJ5015E: The LTPA TokenFactory {0} returned is null.
Problem The LTPA TokenFactory implementation is likely not present in the classpath or it cannot be initialized.
User response Ensure the LTPA TokenFactory implementation is located in the WebSphere classpath. Typically these implementations are put in the ${WAS_INSTALL_ROOT}/classes directory.
SECJ5016E: The LTPA TokenFactory {0} could not create a new LTPA token. The exception is {1}.
Problem The LTPA TokenFactory implementation had a problem in the createToken method or the keys used to create a token were not present.
User response Ensure the LPTA keys are configured properly and check the createToken implementation on the TokenFactory interface.
SECJ6000I: Security Auditing is enabled.
Problem This audit message indicates that the WebSphere Application Server Security Auditing service is enabled.
User response No action is required is this is the desired setting.
SECJ6001I: Security Auditing is required.
Problem This audit message indicates that security auditing records are required.
User response No action is required if this is the desired setting. Note that the intention of this auditing policy is not to commit a business transaction unless the required security auditing records can be saved.
SECJ6002E: Failed to load {0} name {1} and class name {2}.
Problem Failed to load the specified class which wsas defined in the global security custom properties.
User response Verify that the class name, class path, and class file are configured properly.
SECJ6003I: Successfully loaded {0} name {1} and class name {2}.
Problem Indicate that the specified provider class was loaded.
User response No action is required.
SECJ6004I: Security Auditing is disabled.
Problem This audit message indicates that the WebSphere Application Server Security Auditing service is disabled.
User response No action is required if this is the desired setting.
SECJ6005E: Invalid configuration {0} = name {1} and class name {2}.
Problem The provider configuration in global security custom properties was incorrect.
User response Check the specified properties and in particular the first missing parameter in the error message.
SECJ6006E: Security auditing is REQUIRED but {0} was not defined.
Problem At least one AuditEventFactory and an AuditServiceProvider must be defined when the security auditing policy is set to REQUIRED.
User response Verify that the two properties com.ibm.websphere.security.audit.auditEventFactory and com.ibm.wsspi.security.audit.auditServiceProvider are defined proerly in the global security custom properties.
SECJ6007E: Undefined {0} = {1}.
Problem The specified properties was not defined properly in the global security customer properties.
User response Verified that the specified properties is defined properly in the global security custom properties.
SECJ6008E: Exception caught in AuditService initialization, Exception = {0}.
Problem Runtime exception occured most likely due to incorrect class definition, incorrect class path, or missing class files.
User response Examine the exception for the cause of the problem.
SECJ6009E: AuditEventFactory number {0} getActive() malfunction, Provider Exception = {1}.
Problem The getActive method in the spcified AuditEventFactory implementation failed.
User response Examine the exception for the cause of the problem. If the problem was not related to incorrect configuration, then you need to consult with the vendor of the AuditEventFactory implementation.
SECJ6010W: Extra AuditServiceProvider definition detected and discarded: {0}.
Problem Extra AuditServiceProvider was defined and is discarded.
User response The com.ibm.wsspi.security.audit.auditServiceProvider properties contains extra information than necessary. Any information following the valid AuditServiceProvider definition is discarded.
SECJ6011W: Custom property {0} was not defined.
Problem The specified audit service provider was not defined in the global security custom properties.
User response Define the specified properties if security auditing service is required in your business environment.
SECJ6012I: Security Auditing is optional.
Problem This audit message indicates that security auditing records are optional.
User response No action is required if this is the desired setting. Note that the intention of this auditing policy is not to suspend a business transaction when security auditing records cannot be saved.
SECJ6013E: The configured J2EE AuditEventFactory implementation did not implement the J2EEAuditEventFactory interface.
Problem As a convention, an AuditEventFactory implementation that is configured under the J2EE name must implement the J2EEAuditEventFactory interface.
User response Examine the com.ibm.websphere.security.audit.AuditEventFactory properties in global security custom properties.
SECJ6014I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Method Name = {12}, Provider Name = {13}, Provider Successful = {14}, Exception = {15}.
Problem This message is intended to be used by the defaultAuditEventFactoryImpl sendAccessAuditEvent method only.
User response No action required.
SECJ6015I: AuditEvent = {0}, AuditEventFactory Name = {1}.
Problem This message is intended to be used by the defaultAuditServiceProviderImpl sendEvent method only.
User response No action required.
SECJ6016I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Realm = {12}, Authn Mechanism = {13}, Authn Method = {14}, User Name = {15}, Provider Name = {16}, Provider Successful = {17}, Subject = {18}, Caller List = {19}, Remote Addr = {20}, Remote Host = {21}, Remote Port = {22}, Exception = {23}.
Problem This message is intended to be used by the defaultAuditEventFactoryImpl sendAuthnAuditEvent method only.
User response No action required.
SECJ6017E: Unexpected Exception {0}.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ6018I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Method Name = {12}, Provider Name = {13}, Provider Successful = {14}, Subject = {15}, Exception = {16}.
Problem This message is intended to be used by the defaultAuditEventFactoryImpl sendAuthzAuditEvent method only.
User response No action required.
SECJ6019I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Provider Name = {9}, Provider Successful = {10}, Original Realm = {11}, Original User Name = {12}, Mapped Realm = {13}, Mapped User Name = {14}, Exception = {15}.
Problem This message is intended to be used by the defaultAuditEventFactoryImpl sendMappingAuditEvent method only.
User response No action required.
SECJ6020I: AuditEvent = {0} AuditEventFactory Name = {1}.
Problem This message is intended to be used by the defaultAuditServiceProviderImpl sendEvent method only.
User response No action required.
SECJ6021I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Realm = {10}, User Name = {11}, Provider Name = {12}, Provider Successful = {13}, Subject = {14}, Caller List = {15}, Remote Addr = {16}, Remote Host = {17}, Remote Port = {18}, Exception = {19}.
Problem This message is intended to be used by the defaultAuditEventFactoryImpl sendLogoutAuditEvent method only.
User response No action required.
SECJ6022E: AuditServiceProvider malfunction when security auditing is required, Provider Exception = {0}.
Problem The configured AuditServiceProvider did not execute the method in a reasonable time period while security auditing function is required.
User response Examine the exception for the cause of the problem. Typically the business transactions should have been aborted because no security auditing record can be logged.
SECJ6100I: Invalid URI.
Problem A web request is rejected because it contains an invalid URI name.
User response Incorrect URI may be a simple user error or an indication of potential threat where malicious users explore the weakness of web applications. You may perform a correlation analysis of security auditing events.
SECJ6101I: Web access security context not found.
Problem A web request is rejected because no web access security context is configured.
User response The cause may be a simple user error or an indication of potential threat where malicious users explore the weakness of web applications. You may perform a correlation analysis of security auditing events.
SECJ6102I: Access to a web resource is allowed because no access control is required.
Problem Access to a web resource does not require access control because there is no servlet mapping.
User response The URI is not protected. No action is required is this is the desired configuration. Otherwise, proper security constraint should be added to the web application.
SECJ6103I: Access to a web resource is allowed because no access control is required.
Problem Access to a web resource does not require access control because there is no security constraint.
User response The URI is not protected. No action is required is this is the desired configuration. Otherwise, proper security constraint should be added to the web application.
SECJ6104I: Access to a web resource is allowed because the URI is either login page, error page or form login page.
Problem Access to login page, error page, and form login page does not require access control.
User response The URI is not protected. No action is required.
SECJ6105I: Access to a web resource is denied because no security role is defined in the auth constraint.
Problem According to Servlet V2.4 Spec, access to a web resource should be precluded if there is an auth constraint in the security constraint but there is no security role defined in the auth constraint.
User response Modify the security constraint if the current behavior does not fit your needs.
SECJ6106I: The request is redirected to {0} because the requested resource must be accessed via HTTPS.
Problem The requested resource has a Data Constraint and requires SSL connection to it.
User response No action is required.
SECJ6107I: The request is denied because the {0} login method was not supported.
Problem WebSphee Application Server does not support the configured login method.
User response Modify the deployment descriptor to choose a supported login method. You may explore the Trust Association Interface and the UserRegistry interface and plug in your custom implementation to support the DIGEST login method.
SECJ6108I: Access to a web resource is allowed because there is no auth constraint.
Problem According to Servlet V2.4 Spec, access to a web resource should be permitted if there is no auth constraint in the security constraint.
User response Modify the security constraint if the current behavior does not fit your needs.
SECJ6109I: Access to a web resource is allowed because either the EVERYONE Special Subject was mapped to at least one of the required security role or if there is no auth constraint.
Problem Access to a web resource is granted to any user without requiring authentication when the Everyone Special Subject was mapped to at least one of the required security role.
User response Modify the security constraint if the current behavior does not fit your needs.
SECJ6110I: SSO token {0} was validated successfully.
Problem Authentication was successful.
User response No action is required.
SECJ6111I: SSO token {0} failed validation with an Exception.
Problem Authentication failed due to internal failure.
User response Please report this problem to IBM.
SECJ6112I: SSO token {0} is expired and failed validation.
Problem Authentication failed because the SSO token has expired.
User response No action is required.
SECJ6113I: SSO token {0} is invalid and failed validation.
Problem Authentication failed because the SSO token was invalid.
User response No action is required.
SECJ6115I: Authentication successful with Trust Accosication Interceptor.
Problem The authentication via the specified Trust Association Interceptor was successful.
User response No action is required.
SECJ6116I: Authentication failed becasue Trust Accosication Interceptor user name cannot be mapped to WebSphere Application Server user.
Problem The authentication via the specified Trust Association Interceptor failed because the asserted user name cannot be mapped to a valid WebSphere Application Server user.
User response If this problem persists, the mapping problem is likely to be caused either by incorrect TAI configuration or by TAI implementation.
SECJ6117I: Authentication failed due to missing or incorrect user name and/or password. Redirect to {0}.
Problem Form based Authentication failed due to missing or incorrect user id and/or password. Typically a web user will be redirect to a login page to retry.
User response No action is required.
SECJ6118I: Authentication failed becasue Trust the client certificate cannot be mapped to WebSphere Application Server user.
Problem The authentication based on the X509 client certificate failed because the certificate user name cannot be mapped to a valid WebSphere Application Server user.
User response No action is required.
SECJ6119I: Authentication failed becasue the client certicate user name cannot be mapped to WebSphere Application Server user.
Problem The authentication failed because the client certificate user name cannot be mapped to a valid WebSphere Application Server user.
User response The user may not be defined in the registry. Otherwise, verify the registry and mapping configuration.
SECJ6120I: Authentication failed becasue the user registry was not defined.
Problem The authentication failed because there is no active user registry defined to map the client certificate user name to a valid WebSphere Application Server user.
User response Verify the registry and mapping configuration.
SECJ6121I: Client certificate Authentication failed due to internal error.
Problem The authentication failed due to an unexpected runtime exception.
User response Please report the problem to IBM.
SECJ6122I: Client certificate Authentication failed due to internal error. Will try Basec authentication which is permitted by the web application configuration.
Problem The authentication failed due to an unexpected runtime exception. The web application configuration allows authentication using user id and password. Will try to see if there is user id and password information in the HTTP header.
User response No action is required.
SECJ6123I: HTTP authorization header is missing. Send out 401 challenge.
Problem The authentication failed because there is no authorization header in the HTTP header. WebSphere Application Server will send a 401 challenge to the web client.
User response No action is required.
SECJ6124I: Basic authentication data is missing. Send out 401 challenge.
Problem The authentication failed because there is no user id and password information in the HTTP header. WebSphere Application Server will send a 401 challenge to the web client.
User response No action is required.
SECJ6125I: Basic authentication failed due to incorrect user id and/or password Will send a 401 challenge.
Problem The authentication failed because there the user id and password information in the HTTP header was incorrect. WebSphere Application Server will send a 401 challenge to the web client.
User response No action is required.
SECJ6126I: Basic authentication was successful.
Problem Authentication using the user id and password in the HTTP header was successful.
User response No action is required.
SECJ6127I: Basic authentication failed due to internal error.
Problem Basic Authentication failed and a runtime exception was caught.
User response Please report this problem to IBM.
SECJ6128I: Authentication failed due to internal error.
Problem Authentication failed and a runtime exception was caught.
User response Please report this problem to IBM.
SECJ6129I: Access is allowed because security is disabled.
Problem Access to the resource is allowed because WebSphere Application Server global security eas not enabled.
User response No action required if this is the configured behavior..
SECJ6130I: Access is allowed.
Problem Access to the resource is allowed because the user and/or the groups the user is in have the required security role.
User response No action required if this is the desired behavior.
SECJ6131I: Access is denied.
Problem Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
User response No action required if this is the desired behavior.
SECJ6132I: Access is denied, Reason: {0}.
Problem Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
User response No action required if this is the desired behavior.
SECJ6133I: Parsing client certificate failed.
Problem Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
User response No action required.
SECJ6134I: Session does not exist on server.
Problem The client context id (= 0) in a MessageInContext message is invalid.
User response No action required.
SECJ6135I: Session does not exist on server.
Problem The client context id is inconsistent with session state.
User response This problem should be analyzed to determine whether it was due to program or operational error or due to spoofing attempt.
SECJ6136I: Session or token expired.
Problem The security token in the security context has expired.
User response Typically token has a finite expiration time and this condition may be normal.
SECJ6137I: ASSOC_ACCEPT message is illegal at the target. The client may not be using correct configuration.
Problem The message type ASSOC_ACCEPT should not be received at the target server. This might occur due to an exception that occurred on the client which caused a mixup.
User response Check the client configuration to ensure there's nothing out of the ordinary that might be causing an exception to occur.
SECJ6138I: Security context setup successfully.
Problem The client security context was re-established successfully using the client session context identifier. The message type ASSOC_ACCEPT should not be received at the target server.
User response No action is required.
SECJ6139I: The authorization token is invalid.
Problem Parsing the client authorization token failed.
User response Need to determine if this is caused by programming error.
SECJ6140I: Invalid GSS security token format.
Problem GSS security context token contains invalid OID number or authentication mechanism.
User response No action required.
SECJ6141I: Authentication failed due to internal error.
Problem Authentication failed due to internal error.
User response No action required.
SECJ6142I: Cannot obtain the identity of the ITTPrincipalName.
Problem The Identity token is invalid.
User response No action is required.
SECJ6143I: Authentication failed.
Problem Could not validate Client Authentication Token and/or Client Certificates during Identity Assertion.
User response No action is required.
SECJ6144I: Authentication failed.
Problem Failed to convert the client certificate.
User response No action is required.
SECJ6145I: Authenticate to unauthenticated credentials.
Problem Setting the credentials to unauthenticated because there is no valid identity token.
User response No action is required.
SECJ6146I: Message type was not supported.
Problem Message type is not EstablishContext and stateful=false.
User response No action is required.
SECJ6147I: Authentication failed.
Problem Examine the exception for reason of failure.
User response No action is required.
SECJ6148I: Authentication succeeded.
Problem The authentication was successful.
User response No action is required.
SECJ6149I: Principal/Credential mapping succeeded.
Problem The J2EE Connection principal/credential mapping was successful.
User response No action is required.
SECJ6150I: The user has the required roles {0}.
Problem The user has been granted to one or more of the required roles.
User response No action is required.
SECJ6151I: The user does not have the required roles {0}.
Problem The user has not been granted any one of the required roles.
User response No action is required.
SECJ6152I: Form Logout.
Problem The HTTP session is cleaned up after form logout.
User response No action is required.
SECJ6153I: Redirect to form based login page {0} to prompt for web client authentication data.
Problem The web resource requires Form based authentication. Typically a web user will be redirected to a login page to enter user id and password.
User response No action is required.
SECJ6154I: Form based authentication was successful.
Problem Form based authentication was successful.
User response No action is required.
SECJ6205W: The current Java 2 Security policy reported a potential violation of a Java 2 Security Permission. Please refer to the InfoCenter for further information.{0}Permission:{1}Code:{2}Code Base Location:{3}
Problem The Java Security Manager checkPermission() threw a SecurityException on the subject Permission. A caller on the call stack does not have the required permission. This may not be a problem if the caller properly handles this exception.
User response Verify that the attempted operation is permitted by examining all Java 2 security policy files and application code. Additional permissions may be required, an AccessController.doPrivileged call may be needed in some code on the call stack, or the Security Manager has properly prevented access to a resource that a caller does not have permission to access.
SECJ6206W: The current Java 2 Security policy report a potential violation of a Java 2 Security Permission. Stack Trace:{0}
Problem The Java Security Manager checkPermission() threw a SecurityException. A caller on the call stack does not have the required permission.
User response Verify that the attempted operation is permitted by examining all Java 2 security files and application code. Additional permissions may be required.
SECJ6207I: Authorized credential management is enabled.
Problem Applications running in this server are considered "trusted". When applications are trusted, the security infrastructure will allow the creation of MVS credentials without a password, passticket, or certificate as an authenticator. Trusted applications must be enabled in order to use the LTPA authentication mechanism, identity assertion, or a Trust Association Interceptor with a "Local OS" user registry on z/OS. Trusted applications must also be enabled to use SAF authorization.
User response No user action is required.
SECJ6208I: Authorized credential management is disabled.
Problem Applications running in this server are not considered "trusted". Since applications are not trusted, the security infrastructure has disallowed the creation of MVS credentials without a password, passticket, or certificate as an authenticator. Trusted applications must be enabled in order to use the LTPA authentication mechanism, identity assertion, or a Trust Association Interceptor with a "Local OS" user registry on z/OS. Trusted applications must also be enabled to use SAF authorization.
User response No user action is required.
SECJ6209I: Application thread identity synchronization is enabled.
Problem The server has been configured to perform J2EE and operating system thread identity synchronization for applications that request it.
User response No user action is required.
SECJ6210W: Application thread identity synchronization has been disabled by the z/OS security product.
Problem The server has been configured to perform J2EE and operating system thread identity synchronization for applications that request it but the security product has not authorized the use of this support.
User response Contact your security product administrator to request authorization to use thread identity synchronization.
SECJ6211I: Connection management thread identity synchronization is enabled.
Problem The server has been configured to perform J2EE and operating system thread identity synchronization for connectors that are able to exploit it.
User response No user action is required.
SECJ6212W: Connection management thread identity synchronization has been disabled by the z/OS security product.
Problem The server has been configured to perform J2EE and operating system thread identity synchronization for connectors that are able to exploit it but the security product has not authorized the use of this support.
User response Contact your security product administrator to request authorization to use thread identity synchronization.
SECJ6213I: Thread identity synchronization will not subject to SURROGAT authorization.
Problem WebSphere will not perform SURROGAT class authorization checks prior to creating native security environments.
User response No user action is required.
SECJ6214I: SAF authorization is enabled.
Problem WebSphere for z/OS has been configured to use the z/OS security product for authorization. The authorization policies for WebSphere must be defined in the EJBROLE class of the z/OS security product. Authorization policies embedded in the applications will be ignored.
User response No user action is required.
SECJ6215E: The SAF credential token {0} has been finalized but the underlying native credential has not been destroyed.
Problem This exception is unexpected. The cause is not immediately known.
User response If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ6216I: SAF delegation is enabled.
Problem The APPLDATA associated with the profile representing the J2EE role will be used to determine the id of a user that is in the role. An invocation Subject will be built with a credential for that user.
User response No user action is required.
SECJ6217E: Unable to create a SAF delegation credential for the role named "{0}" in application "{1}". The native service results information are: {2}.
Problem The security service was unable to create a delegation credential. This failure is usually due to incorrect or missing APPLDATA associated with the EJBROLE profile associated with the application role.
User response Verify that the EJBROLE profile exists and is defined correctly. If the profile is correct, use the information about the SAF service, and SAF service return codes to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6218W: The SAF delegation implementation was unable to create a subject in the role named "{0}" in application "{1}" for role delegation. The current subject will be used.
Problem An earlier error prevented WebSphere from creating a subject that was in the required role. The target method will be dispatched without a change the current security environment. This may result in authorization errors as the caller may not be in the required role.
User response Please examine the previous messages to determine the initial cause of th error.
SECJ6219I: Basic authentication failed for user "{0}". The native service results related to the authentication failure are: {1}.
Problem WebSphere was unable to authenticate the user with the password that was presented. It is likely that the user ID or password were not valid.
User response Verify that the user ID is valid. If the user is valid, use the provided SAF serivce information to get more information about the cause of the failure.
SECJ6221E: A native credential for user "{0}" cannot be recreated. The native service results related to this failure are: {1}.
Problem An authorized service used to create a native z/OS credential has failed. The credential cannot be used by the caller.
User response Use the provided SAF service information to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6222I: Thread identity synchronization of user "{0}" was not authorized by the z/OS security product.
Problem The z/OS security product did not authorize the creation of a security environment for the specified user. The security environment associated with the current address space will be used.
User response Contact your security product administrator to authorize the creation of a security environment for the specified user if required by your application.
SECJ6223E: Thread identity synchronization of user "{0}" failed. The native service results related to this failure are: {1}.
Problem An authorized service used to perform thread identity synchronization has failed. The thread security environment may not have been associated with the current thread of execution.
User response User the provided SAF service information to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6224I: The custom SAF role to profile mapper "{0}" has been initialized.
Problem A custom SAF role to profile mapper has been configured, loaded, and initialized.
User response No user action is required.
SECJ6225E: Unable to load the custom SAF role to profile mapper "{0}" due to the following exception: {1}
Problem WebSphere was unable to load and and instantiate the configured class. This is generally due to an incorrect class name.
User response Verify that the specified class name is correct and that it can be loaded by the WebSphere class loader.
SECJ6226W: Thread identity synchronization of user "{0}" is not allowed on the "initial pthread task."
Problem The BPX1TLS service does cannot be called from the initial pthread task (IPT). If this service is called on the IPT, future calls to perform connection management or application thread identity synchronization will fail.
User response No action is required.
SECJ7000I: Security Configuration Name
Problem None
User response None
SECJ7001I: Value
Problem None
User response None
SECJ7002I: Security Settings
Problem None
User response None
SECJ7003I: Active authentication mechanism
Problem None
User response None
SECJ7004I: Active RMI/IIOP authentication protocol
Problem None
User response None
SECJ7005I: User account repository
Problem None
User response None
SECJ7006I: Authentication cache timeout
Problem None
User response None
SECJ7007I: Default SSL settings
Problem None
User response None
SECJ7008I: Administrative security
Problem None
User response None
SECJ7009I: Restrict access to resource authentication data
Problem None
User response None
SECJ7010I: Java 2 security
Problem None
User response None
SECJ7011I: Warn if applications are granted custom permissions
Problem None
User response None
SECJ7012I: Use domain-qualified user names
Problem None
User response None
SECJ7013I: Use the local security server
Problem None
User response None
SECJ7014I: Authentication mechanisms and expiration
Problem None
User response None
SECJ7015I: Authentication configuration
Problem None
User response None
SECJ7016I: Authentication context implementation class
Problem None
User response None
SECJ7017I: Authentication validation config
Problem None
User response None
SECJ7018I: Password
Problem None
User response None
SECJ7019I: Simple authentication config
Problem None
User response None
SECJ7020I: Timeout of authentication data forwarded between servers
Problem None
User response None
SECJ7021I: Enable trust association
Problem None
User response None
SECJ7022I: Interceptors
Problem None
User response None
SECJ7023I: Interceptor class name
Problem None
User response None
SECJ7024I: Single signon (SSO)
Problem None
User response None
SECJ7025I: Domain name
Problem None
User response None
SECJ7026I: Requires SSL
Problem None
User response None
SECJ7027I: User Registry
Problem None
User response None
SECJ7028I: Realm
Problem None
User response None
SECJ7029I: Server user ID
Problem None
User response None
SECJ7030I: Server user password
Problem None
User response None
SECJ7031I: Authorization configuration
Problem None
User response None
SECJ7032I: External authorization using a JACC provider
Problem None
User response None
SECJ7033I: Authorization providers
Problem None
User response None
SECJ7034I: Provider initialization class name
Problem None
User response None
SECJ7035I: J2EE Policy implementation class name
Problem None
User response None
SECJ7036I: Name
Problem None
User response None
SECJ7037I: Policy configuration factory class name
Problem None
User response None
SECJ7038I: Requires the EJB arguments policy context handler for access decisions
Problem None
User response None
SECJ7039I: Role configuration factory class name
Problem None
User response None
SECJ7040I: Supports dynamic module updates
Problem None
User response None
SECJ7041I: Application login configuration
Problem None
User response None
SECJ7042I: Entries
Problem None
User response None
SECJ7043I: Alias
Problem None
User response None
SECJ7044I: JAAS login modules
Problem None
User response None
SECJ7045I: Authentication strategy
Problem None
User response None
SECJ7046I: Module class name
Problem None
User response None
SECJ7047I: Custom properties
Problem None
User response None
SECJ7048I: Value
Problem None
User response None
SECJ7049I: CSI
Problem None
User response None
SECJ7050I: Claims
Problem None
User response None
SECJ7051I: Stateful sessions
Problem None
User response None
SECJ7052I: Layers
Problem None
User response None
SECJ7053I: Supported ciphers
Problem None
User response None
SECJ7054I: Enable
Problem None
User response None
SECJ7055I: Establish trust in client
Problem None
User response None
SECJ7056I: Required Quality of protection (QoP) settings
Problem None
User response None
SECJ7057I: Confidentiality
Problem None
User response None
SECJ7058I: Enable Protection
Problem None
User response None
SECJ7059I: Integrity
Problem None
User response None
SECJ7060I: Server Authentication
Problem None
User response None
SECJ7061I: SSL configurations
Problem None
User response None
SECJ7062I: performs
Problem None
User response None
SECJ7063I: Session GC Idle Time
Problem None
User response None
SECJ7064I: Session GC Interval
Problem None
User response None
SECJ7065I: Authentication Layer Retry Count
Problem None
User response None
SECJ7066I: SAS
Problem None
User response None
SECJ7067I: SSL configuration repertoires
Problem None
User response None
SECJ7068I: SSL settings
Problem None
User response None
SECJ7069I: Client authentication
Problem None
User response None
SECJ7070I: Cryptographic token
Problem None
User response None
SECJ7071I: Key file format
Problem None
User response None
SECJ7072I: Key file name
Problem None
User response None
SECJ7073I: Key file password
Problem None
User response None
SECJ7074I: Security level
Problem None
User response None
SECJ7075I: Trust file format
Problem None
User response None
SECJ7076I: Trust file name
Problem None
User response None
SECJ7077I: Trust file password
Problem None
User response None
SECJ7078I: Cryptographic token
Problem None
User response None
SECJ7079I: Library file
Problem None
User response None
SECJ7080I: Token Type
Problem None
User response None
SECJ7081I: Custom properties
Problem None
User response None
SECJ7082I: System login configuration
Problem None
User response None
SECJ7083I: Properties
Problem None
User response None
SECJ7085I: Required
Problem None
User response None
SECJ7086I: Secure administration, applications, and infrastructure
Problem None
User response None
SECJ7088I: Security
Problem None
User response None
SECJ7089I: Console Name
Problem None
User response None
SECJ7090I: Console Path Name
Problem None
User response None
SECJ7091I: Name
Problem None
User response None
SECJ7092I: Java Authentication and Authorization Service
Problem None
User response None
SECJ7093I: System logins
Problem None
User response None
SECJ7094I: Application logins
Problem None
User response None
SECJ7095I: Administrative users and groups
Problem None
User response None
SECJ7096I: Administrative Role Name
Problem None
User response None
SECJ7097I: Administrative Role Value
Problem None
User response None
SECJ7098I: Administrator User
Problem None
User response None
SECJ7099I: No Administrator User
Problem None
User response None
SECJ7100I: Operator User
Problem None
User response None
SECJ7101I: No Operator user or group
Problem None
User response None
SECJ7102I: Moderator User
Problem None
User response None
SECJ7103I: No Moderator user or group
Problem None
User response None
SECJ7104I: Configurator User
Problem None
User response None
SECJ7105I: No Configurator user or group
Problem None
User response None
SECJ7106I: Administrative User Roles
Problem None
User response None
SECJ7107I: Administrative Group Roles
Problem None
User response None
SECJ7108I: Administrator Group
Problem None
User response None
SECJ7109I: Operator Group
Problem None
User response None
SECJ7110I: Moderator Group
Problem None
User response None
SECJ7111I: Configurator Group
Problem None
User response None
SECJ7112I: CORBA Naming Console Name
Problem None
User response None
SECJ7113I: CORBA Naming Role Name
Problem None
User response None
SECJ7114I: CORBA Naming Role Value
Problem None
User response None
SECJ7115I: CORBA Naming Console Path
Problem None
User response None
SECJ7116I: Read
Problem None
User response None
SECJ7117I: Everyone
Problem None
User response None
SECJ7118I: ServerId
Problem None
User response None
SECJ7119I: All Authenticated Users and Groups
Problem None
User response None
SECJ7120I: Specific User Ids
Problem None
User response None
SECJ7121I: No roles defined
Problem None
User response None
SECJ7122I: CORBA Naming Service Groups
Problem None
User response None
SECJ7123I: Write
Problem None
User response None
SECJ7124I: Create
Problem None
User response None
SECJ7125I: Delete
Problem None
User response None
SECJ7126I: Environment
Problem None
User response None
SECJ7127I: Naming
Problem None
User response None
SECJ7128I: SSL certificate and key management
Problem None
User response None
SECJ7129I: Console Name for Certificate Management
Problem None
User response None
SECJ7130I: Console Path for Certificate Management
Problem None
User response None
SECJ7131I: Certificate Alias
Problem None
User response None
SECJ7132I: Certificate Expiry
Problem None
User response None
SECJ7133I: Certificate Management
Problem None
User response None
SECJ7134I: RMI/IIOP security
Problem None
User response None
SECJ7135I: Authentication mechanisms and expiration
Problem None
User response None
SECJ7136I: Authentication expiration
Problem None
User response None
SECJ7137I: Application security
Problem None
User response None
SECJ7138I: External authorization providers
Problem None
User response None
SECJ7139I: Manage endpoint security configurations
Problem None
User response None
SECJ7140I: Web security
Problem None
User response None
SECJ7141I: Trust association
Problem None
User response None
SECJ7142I: Interceptors
Problem None
User response None
SECJ7143I: Single signon (SSO)
Problem None
User response None
SECJ7144I: Key stores
Problem None
User response None
SECJ7145I: Trust managers
Problem None
User response None
SECJ7146I: Key managers
Problem None
User response None
SECJ7147I: Management scope
Problem None
User response None
SECJ7148I: Key set groups
Problem None
User response None
SECJ7149I: Key sets
Problem None
User response None
SECJ7150I: Schedules
Problem None
User response None
SECJ7151I: Notifications
Problem None
User response None
SECJ7152I: Manage certificate expiration
Problem None
User response None
SECJ7153I: Web Authentication
Problem None
User response None
SECJ7154I: Internal server ID
Problem None
User response None
SECJ7155I: Use the registry server id instead of the internal server id
Problem None
User response None
SECJ7156I: Trusted identity
Problem None
User response None
SECJ7157I: Password
Problem None
User response None
SECJ7158I: Client Authentication Supported
Problem None
User response None
SECJ7159I: Enabled Ciphers
Problem None
User response None
SECJ7160I: JSSE Provider
Problem None
User response None
SECJ7161I: Trust store
Problem None
User response None
SECJ7162I: SSL Protocol
Problem None
User response None
SECJ7163I: File-based key store
Problem None
User response None
SECJ7164I: Host list
Problem None
User response None
SECJ7165I: Initialize at startup
Problem None
User response None
SECJ7166I: Path
Problem None
User response None
SECJ7167I: Provider
Problem None
User response None
SECJ7168I: Type
Problem None
User response None
SECJ7169I: milliseconds
Problem None
User response None
SECJ7170I: seconds
Problem None
User response None
SECJ7171I: minutes
Problem None
User response None
SECJ7172I: Dynamically update run time when SSL configuration changes occur
Problem None
User response None
SECJ7173I: Ignore case for authorization
Problem None
User response None
SECJ7174I: Custom registry class name
Problem None
User response None
SECJ7175I: Default client certificate alias
Problem None
User response None
SECJ7176I: Default server certificate alias
Problem None
User response None
SECJ7177I: Algorithm
Problem None
User response None
SECJ7178I: Class name
Problem None
User response None
SECJ7179I: Additional Trust Manager attributes
Problem None
User response None
SECJ7180I: Key file name
Problem None
User response None
SECJ7181I: Class name
Problem None
User response None
SECJ7182I: Hover help key
Problem None
User response None
SECJ7183I: Inclusive
Problem None
User response None
SECJ7184I: NLS Range Key
Problem None
User response None
SECJ7185I: Range
Problem None
User response None
SECJ7186I: Class name
Problem None
User response None
SECJ7187I: Certificate alias
Problem None
User response None
SECJ7188I: Direction
Problem None
User response None
SECJ7189I: Scope Name
Problem None
User response None
SECJ7190I: Scope Type
Problem None
User response None
SECJ7191I: Automatically generate keys
Problem None
User response None
SECJ7192I: Key set
Problem None
User response None
SECJ7193I: Minute
Problem None
User response None
SECJ7194I: Key alias prefix name
Problem None
User response None
SECJ7195I: Delete key references that are beyond the maximum number of keys
Problem None
User response None
SECJ7196I: Specifies a key pair instead of a key
Problem None
User response None
SECJ7197I: Key generation class
Problem None
User response None
SECJ7198I: Maximum key references
Problem None
User response None
SECJ7199I: Key reference
Problem None
User response None
SECJ7200I: Key Alias
Problem None
User response None
SECJ7201I: Version
Problem None
User response None
SECJ7202I: Day of week
Problem None
User response None
SECJ7203I: Frequency
Problem None
User response None
SECJ7204I: Hour
Problem None
User response None
SECJ7205I: Next start date
Problem None
User response None
SECJ7206I: List of e-mail addresses
Problem None
User response None
SECJ7207I: Log to SystemOut
Problem None
User response None
SECJ7208I: Automatically replace expiring self-signed certificates
Problem None
User response None
SECJ7209I: Expiration notification threshold
Problem None
User response None
SECJ7210I: Delete old certificate after replacement
Problem None
User response None
SECJ7211I: Enable checking
Problem None
User response None
SECJ7212I: Schedules
Problem None
User response None
SECJ7213I: Notifications
Problem None
User response None
SECJ7214I: days
Problem None
User response None
SECJ7215I: messages
Problem None
User response None
SECJ7216I: Primary administrative user name
Problem None
User response None
SECJ7217I: General settings
Problem None
User response None
SECJ7218I: CORBA Naming Service Users
Problem None
User response None
SECJ7219I: Base distinguished name
Problem None
User response None
SECJ7220I: Bind distinguished name
Problem None
User response None
SECJ7221I: Bind password
Problem None
User response None
SECJ7222I: Reuse connection
Problem None
User response None
SECJ7223I: Search timeout
Problem None
User response None
SECJ7224I: SSL enabled
Problem None
User response None
SECJ7225I: Custom registry class name
Problem None
User response None
SECJ7226I: Use the United States Federal Information Processing Standard (FIPS) algorithms
Problem None
User response None
SECJ7300E: Failed in attempt to add administrative user to virtual member manager
Problem Admin user id could not be added to virtual member manager file-based registry
User response Validate virtual member manager has been configured
SECJ7305E: Found other virtual member manager repository configurations. Only the built-in virtual member manager file-based repository is supported through the wizard
Problem Found other virtual member manager repository configurations but only file-based is supported in the wizard
User response None
SECJ7310E: Workspace exception while adding user to admin-authz.xml
Problem An error occuring accessing the Workspace
User response None
SECJ7311E: Failed to add user to admin-authz.xml
Problem Error occurred updating the admin-authz.xml file with the new admin user
User response None
SECJ7312E: Failed to get to Security workspace
Problem Exception raised when accessing the Security object in the workspace
User response None
SECJ7320E: Invalid user registry type
Problem Valid user registry types are: LDAPUserRegistry, LocalOSUserRegistry, CustomUserRegistry, WIMUserRegistry
User response Ensure user registry type is a valid type
SECJ7321E: Invalid LDAP user registry type
Problem LDAP registry type was not a valid type
User response Ensure user registry type is a valid type
SECJ7330E: Failed to verify admin user would not be locked out of console
Problem Exception raised while verifying at least one admin id in the admin-authz.xml exists in the user registry
User response None
SECJ7331E: Failed to auto-generate the LTPA password
Problem Could not auto-generate an LTPA password
User response None
SECJ7332E: Failed to auto-generate the Server Id
Problem Could not auto-generate a Server Id
User response None
SECJ7333E: Could not find admin name in the specified user registry
Problem Admin name does not exist in the specified user registry
User response Ensure the admin name exists in the user registry prior to executing command
SECJ7334E: Exception raised while applying wizard security settings
Problem Caught exception while applying wizard security settings
User response None
SECJ7335E: Exception raised while getting wizard security settings
Problem Caught exception while getting wizard security settings
User response None
SECJ7336E: Exception raised while getting Application Security setting
Problem Caught exception while getting Application Security setting
User response None
SECJ7337E: Exception raised while getting Global Security setting
Problem Caught exception while getting Global Security setting
User response None
SECJ7338E: Exception raised while setting Global Security setting
Problem Caught exception while setting Global Security setting
User response None
SECJ7339E: Exception raised while validating admin name
Problem Caught exception while validating admin name
User response None
SECJ7340E: Exception raised trying to connect to LDAP server
Problem Exception raised connecting to the LDAP server
User response Verify input parameters are correct
SECJ7341E: Exception raised while setting useRegistryServerId
Problem Exception raised while setting useRegistryServerId in the user registry object
User response None
SECJ7342E: Failed to validate user/password
Problem Failed to validate user password in WIM registry
User response None
SECJ7350E: Exception raised while adding adminId to user registry
Problem Exception raised while adding adminId to user registry
User response None
SECJ7355E: Failed to add the adminID to the user registry object
Problem Failed to add the adminID to the user registry object
User response None
Reference topic    

Terms of Use | Feedback

Last updated: Jun 13, 2009 1:00:35 PM CDT
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.messages.doc/com.ibm.ejs.resources.security.html

© Copyright IBM Corporation 2006, 2009. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)