PQ94210: ADMINISTRATIVE CONSOLE HAS EMPTY LISTS

 A fix is available

Obtain the fix for this APAR



APAR status
Closed as program error.

Error description
Administrative console has empty lists. The following message
is seen in the Deployment Manager Control Region:
BBOO0222I SECJ0305I: Role based authorization check failed for
security name zzz.corp.xxx.com:389/wasadmin, accessId
user:snoopy/snoopy while invoking method
getDigest:java.lang.String
on resource ConfigRepository and module ConfigRepository.
Local fix Problem summary
****************************************************************
* USERS AFFECTED: All users of WebSphere Application Server    *
*                 V5.0 for z/OS                                *
****************************************************************
* PROBLEM DESCRIPTION: The Administrative Console displays     *
*                      incorrect information, or no            *
*                      information at all. Any of the          *
*                      following scenarios will sometimes      *
*                      return no table of components:          *
*                      1.) Servers => Application Servers      *
*                      2.) Applications => Enterprise          *
*                                          Applications        *
*                      3.) Security => SSL Configuration       *
*                                      Repertoires             *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
The realm name is being set to the userid, when using a
Non-SAF User registry, causing an AccessCheck failure in the
Controller.
The following message is seen in the Deployment Manager
Control Region:
BBOO0222I SECJ0305I: Role based authorization check failed for
security name zzz.corp.xxx.com:389/wasadmin, accessId
user:snoopy/snoopy while invoking method getDigest:
java.lang.String on resource ConfigRepository and module
ConfigRepository.

And the following stack trace exception can be seen in the
Servant Region:

BBOO0220E WKSP0008E: RepositoryException while checking the
state of cells/Cell_Test/cell.xml in the master repository --
com.ibm.websphere.management.exception.RepositoryException
at com.ibm.ws.management.repository.client.ServantConfigReposi
at com.ibm.ws.management.repository.client.ServantConfigReposi
at com.ibm.ws.management.repository.client.ServantConfigReposi
at com.ibm.ws.sm.workspace.impl.WorkSpaceMasterRepositoryAdapt
at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn
at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn
at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn
at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.getDelta
at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.contents
at org.apache.struts.action.ActionServlet.process(ActionServle
at org.apache.struts.action.ActionServlet.doGet(ActionServlet)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:74)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:85)
at com.ibm.ws.cache.servlet.ServletWrapper.serviceProxied(Ser)
at com.ibm.ws.cache.servlet.CacheHook.handleFragment(CacheHoo)
at com.ibm.ws.cache.servlet.CacheHook.handleServlet(CacheHook)
at com.ibm.ws.cache.servlet.ServletWrapper.service(ServletWra)
at com.ibm.ws.webcontainer.servlet.StrictServletInstance.doSer
at com.ibm.ws.webcontainer.servlet.StrictLifecycleServlet._ser
at com.ibm.ws.webcontainer.servlet.IdleServletState.service(S)
at com.ibm.ws.webcontainer.servlet.StrictLifecycleServlet.serv
at com.ibm.ws.webcontainer.servlet.ServletInstance.service(Se)
at com.ibm.ws.webcontainer.servlet.ValidServletReferenceState.
at com.ibm.ws.webcontainer.servlet.ServletInstanceReference.di
at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.hand
at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.disp
at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forw
at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebApp)
at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationH
at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.h
at com.ibm.ws.webcontainer.cache.invocation.CacheableInvocatio
at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatc
at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc
at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc
at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc
at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest()
at com.ibm.ws390.wc.http.HttpConnection.readAndHandleRequest()
at com.ibm.ws390.wc.http.HttpConnection.handle390Request(Http)
at com.ibm.ws390.wc.httpcatcher.WS390HttpTransport.handleReque
at com.ibm.ws390.wc.httpcatcher.WS390HttpTransportWrapper.http
at com.ibm.ws390.orb.ServerRegionBridge.invoke(ServerRegionBr)
at com.ibm.ws390.orb.ORBEJSBridge.invoke(ORBEJSBridge.java:17)
---- Begin backtrace for nested exception
javax.management.JMRuntimeException: ADMN0022E: Access denied
for the getDigest operation on ConfigRepository MBean due to
insufficient or empty credentials.
com.ibm.ws.sm.workspace.impl.WorkSpaceMasterRepositoryAdapter
Problem conclusion
Code was added to make sure that the realm name was not
overwritten by the userid when using a non-SAF User registry.

APAR PQ94210 is associated with SERVICE LEVEL W502016 of
WebSphere Application Server V5.0 for z/OS.
Temporary fix Comments
APAR information
APAR number PQ94210
Reported component name WEBSPHERE FOR Z
Reported component ID 5655I3500
Reported release 500
Status CLOSED PER
PE NoPE
HIPER NoHIPER
Special Attention NoSpecatt
Submitted date 2004-09-14
Closed date 2004-10-07
Last modified date 2004-11-02

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:
PQ96631

Modules/Macros
BBOUBINF          

Publications Referenced

Fix information
Fixed component name WEBSPHERE FOR Z
Fixed component ID 5655I3500

Applicable component levels
R500 PSY UQ93769    UP04/10/15 P F410

  Fix is available
Select the PTF appropriate for your component level. You will be required to sign in. Distribution on physical media is not available in all countries.


Document Information


Current web document: swg1PQ94210.html
Product categories: Software > Application Servers > Distributed Application & Web Servers > WebSphere Application Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ94210
IBM Group: Software Group
Modified date: Nov 2, 2004