|
| Problem | After configuring Websphere® Application Server to use keyring class with a self-signed certificate, Administrative Server process fails to start. | | | | Solution | The Information Center contains instructions in section 5.5.6 to create new key ring classes and self-signed certificates. After following instructions to create a new keyring to replace the WebSphere Application Server DummyKeyRing class, add the self-signed certificate to the "Signer certificates". If the certificate is listed as one of the personal certificates, but not as a signer certificate, the following error appears in the tracefile when trying to start up the administrative server using that keyring class: AdminServer F Encountered an exception in the main method java.rmi.RemoteException: ; nested exception is: com.ibm.ejs.EJSException: Could not register with Location Service Daemon; nested exception is: java.lang.ClassCastExceptioncom.ibm.ejs.EJSException: Could not register with Location Service Daemon; nested exception is: java.lang.ClassCastExceptionjava.lang.ClassCastException at javax.rmi.PortableRemoteObject.narrow(PortableRemoteObject.java:333) at com.ibm.CORBA.services.lsd.LocationServiceClient.<init>(LocationServiceClient.java:140) at com.ibm.CORBA.services.lsd.LocationServiceClient.initialize(LocationServiceClient.java:161) at com.ibm.ejs.oa.LocationService.registerExplicit(LocationService.java:191) at com.ibm.ejs.oa.EJSServerORBImpl.<init>(EJSServerORBImpl.java:135) at com.ibm.ejs.oa.EJSORB.init(EJSORB.java:324) at com.ibm.ejs.sm.server.ManagedServer.initializeOrb(ManagedServer.java:831) at com.ibm.ejs.sm.server.ManagedServer.initializeRuntime(ManagedServer.java:567) at com.ibm.ejs.sm.server.AdminServer.initializeRuntime(AdminServer.java:1008) at com.ibm.ejs.sm.server.AdminServer.main(AdminServer.java:365)To add the self-signed certificate to the signer certificates, use the IBM® Key Management (IKeyman) tool:- From the main menu bar, select Key Database File>Open.
- Browse to and select the keyring class to open.
- At the password prompt, type the password for the keyring class.
- Under the list of Personal Certificates, select the self-signed certificate and click on Extract Certificate.
- Choose a name for the saved .arm file.
- Switch from Personal Certificates to Signer Certificates.
- Click Add and browse to the .arm file saved in #5, then click OK to save.
- From the main menu bar, select Key Database File>Close to save changes.
The Administrative Server will now start. | |
| |
| |
|
Product categories: Software, Application Servers, Distributed Application & Web Servers, WebSphere Application Server, Security Operating system(s): Multi-Platform Software version: 3.5, 4.0.1, 4.0.2 Software edition: All Editions Reference #: 1048676 IBM Group: Software Group Modified date: 2004-05-29
(C) Copyright IBM Corporation 2000, 2004. All Rights Reserved.
|