PQ94210: ADMINISTRATIVE CONSOLE HAS EMPTY LISTS | |||||||||||||||||||||||||||||||||||||||||||
![]() |
|||||||||||||||||||||||||||||||||||||||||||
![]() APAR status Closed as program error. Error description Administrative console has empty lists. The following message is seen in the Deployment Manager Control Region: BBOO0222I SECJ0305I: Role based authorization check failed for security name zzz.corp.xxx.com:389/wasadmin, accessId user:snoopy/snoopy while invoking method getDigest:java.lang.String on resource ConfigRepository and module ConfigRepository.Local fix Problem summary **************************************************************** * USERS AFFECTED: All users of WebSphere Application Server * * V5.0 for z/OS * **************************************************************** * PROBLEM DESCRIPTION: The Administrative Console displays * * incorrect information, or no * * information at all. Any of the * * following scenarios will sometimes * * return no table of components: * * 1.) Servers => Application Servers * * 2.) Applications => Enterprise * * Applications * * 3.) Security => SSL Configuration * * Repertoires * **************************************************************** * RECOMMENDATION: * **************************************************************** The realm name is being set to the userid, when using a Non-SAF User registry, causing an AccessCheck failure in the Controller. The following message is seen in the Deployment Manager Control Region: BBOO0222I SECJ0305I: Role based authorization check failed for security name zzz.corp.xxx.com:389/wasadmin, accessId user:snoopy/snoopy while invoking method getDigest: java.lang.String on resource ConfigRepository and module ConfigRepository. And the following stack trace exception can be seen in the Servant Region: BBOO0220E WKSP0008E: RepositoryException while checking the state of cells/Cell_Test/cell.xml in the master repository -- com.ibm.websphere.management.exception.RepositoryException at com.ibm.ws.management.repository.client.ServantConfigReposi at com.ibm.ws.management.repository.client.ServantConfigReposi at com.ibm.ws.management.repository.client.ServantConfigReposi at com.ibm.ws.sm.workspace.impl.WorkSpaceMasterRepositoryAdapt at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.checkSyn at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.getDelta at com.ibm.ws.sm.workspace.impl.RepositoryContextImpl.contents at org.apache.struts.action.ActionServlet.process(ActionServle at org.apache.struts.action.ActionServlet.doGet(ActionServlet) at javax.servlet.http.HttpServlet.service(HttpServlet.java:74) at javax.servlet.http.HttpServlet.service(HttpServlet.java:85) at com.ibm.ws.cache.servlet.ServletWrapper.serviceProxied(Ser) at com.ibm.ws.cache.servlet.CacheHook.handleFragment(CacheHoo) at com.ibm.ws.cache.servlet.CacheHook.handleServlet(CacheHook) at com.ibm.ws.cache.servlet.ServletWrapper.service(ServletWra) at com.ibm.ws.webcontainer.servlet.StrictServletInstance.doSer at com.ibm.ws.webcontainer.servlet.StrictLifecycleServlet._ser at com.ibm.ws.webcontainer.servlet.IdleServletState.service(S) at com.ibm.ws.webcontainer.servlet.StrictLifecycleServlet.serv at com.ibm.ws.webcontainer.servlet.ServletInstance.service(Se) at com.ibm.ws.webcontainer.servlet.ValidServletReferenceState. at com.ibm.ws.webcontainer.servlet.ServletInstanceReference.di at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.hand at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.disp at com.ibm.ws.webcontainer.webapp.WebAppRequestDispatcher.forw at com.ibm.ws.webcontainer.srt.WebAppInvoker.doForward(WebApp) at com.ibm.ws.webcontainer.srt.WebAppInvoker.handleInvocationH at com.ibm.ws.webcontainer.cache.invocation.CachedInvocation.h at com.ibm.ws.webcontainer.cache.invocation.CacheableInvocatio at com.ibm.ws.webcontainer.srp.ServletRequestProcessor.dispatc at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc at com.ibm.ws390.wc.httpcatcher.WS390Router$WS390RouterDispatc at com.ibm.ws.webcontainer.http.HttpConnection.handleRequest() at com.ibm.ws390.wc.http.HttpConnection.readAndHandleRequest() at com.ibm.ws390.wc.http.HttpConnection.handle390Request(Http) at com.ibm.ws390.wc.httpcatcher.WS390HttpTransport.handleReque at com.ibm.ws390.wc.httpcatcher.WS390HttpTransportWrapper.http at com.ibm.ws390.orb.ServerRegionBridge.invoke(ServerRegionBr) at com.ibm.ws390.orb.ORBEJSBridge.invoke(ORBEJSBridge.java:17) ---- Begin backtrace for nested exception javax.management.JMRuntimeException: ADMN0022E: Access denied for the getDigest operation on ConfigRepository MBean due to insufficient or empty credentials. com.ibm.ws.sm.workspace.impl.WorkSpaceMasterRepositoryAdapterProblem conclusion Code was added to make sure that the realm name was not overwritten by the userid when using a non-SAF User registry. APAR PQ94210 is associated with SERVICE LEVEL W502016 of WebSphere Application Server V5.0 for z/OS.Temporary fix Comments
APAR is sysrouted FROM one or more of the following: APAR is sysrouted TO one or more of the following: PQ96631 Modules/Macros
Publications Referenced
|
Document Information |
Current web document: swg1PQ94210.html
Product categories: Software > Application Servers >
Distributed Application & Web Servers > WebSphere Application
Server for z/OS
Operating system(s):
Software version: 500
Software edition:
Reference #: PQ94210
IBM Group: Software Group
Modified date: Nov 2, 2004
(C) Copyright IBM Corporation 2000, 2009. All Rights Reserved.