|
Problem(Abstract) |
After enabling security on a node, the security.xml file
is not synchronized causing errors in the node agent log. Error messages
similar to the following occur.
[5/1/03 12:30:49:779 MDT] 3031efc1 RoleBasedAuth A SECJ0321E: Role
based authorization is caller in role failed for security name
xyx-ldap.xyx-company.ca:389/uid=was5admin,o=xyx-company,c=ca, accessId
xyx-ldap.xyx-company.ca:389/uid=was5admin,o=xyx-company,c=ca, and role
name
administrator.
[5/1/03 12:30:49:782 MDT] 3031efc1 FileRepositor A ADMR0021E: User
xyx-ldap.xyx-company.ca:389/uid=was5admin,o=xyx-company,c=ca does not have
the
required role for accessing restricted document
cells/xyx-node/security.xml.
The was5admin id is defined as the "Server User ID" and therefore should
have enough privileges.
All other synchronizations finished successfully.
|
|
|
|
Cause |
The Server User ID was defined using the fully qualified
DN rather than the short name. |
|
|
Resolving the
problem |
In the Administrative console>Security>User
Registries>LDAP
Change the Server User ID from a full qualified name to the short
name.
(i.e. From: uid=was5admin,o=xyx-company,c=ca
To: was5admin)
|
|
|
|
|
Cross Reference information |
Segment |
Product |
Component |
Platform |
Version |
Edition |
Application Servers |
Runtimes for Java Technology |
Java SDK |
|
|
|
|
|
|