WebSphere Application Server messages
             Operating Systems: AIX, HP-UX, i5/OS, Linux, Solaris, Windows, z/OS


SECJ

SECJ0007E: Error during security initialization. The exception is {0}.
Explanation An unexpected error occurred during security initialization.
Action This is a general error. Look for previous messages that may be related to the failure or a configuration problem. Enabling security debug trace for components com.ibm.ws.security.* and com.ibm.ejs.security.* may yield additional information.
SECJ0010E: Invalid credential
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0040E: Error occurred while generating new LTPA keys. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0041E: Can't set Authentication Mechanism to LTPA when LTPAConfig is null
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0045E: Error initializing security/SAS
Explanation An error occurred initializing the Secure Association Service which is part of the ORB security.
Action Verify the property file, usually sas.server.props, is present and has read permission.
SECJ0046I: SAS Property:{0} has been updated
Explanation Informational.
Action A security configuration change has caused a SAS Property to be updated.
SECJ0047E: Missing or malformed security configuration URL specified by property {0}
Explanation The URL used to specify Secure Association Service properties is missing or malformed.
Action The URL is usually specified as a property name when starting WebSphere from the command line with the -D argument. For example: -Dcom.ibm.CORBA.ConfigURL=file:/C:/wastd/AppServer/properties/sas.server.props. Verify that the property and URL is specified and refers to a valid file and the file has the read permission.
SECJ0048E: Error updating or loading future security configuration URL specified by property {0}
Explanation The path or file specified in the property may be invalid or there could be a file permission problem.
Action Verify the path and file specified by the property is valid and the file has read permission.
SECJ0049E: Configuration error encountered while starting the server
Explanation An unexpected RemoteException, OpException or IOException occurred during server startup. There could be problems with loading or writing of security configuration URL property files.
Action Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0050E: Error encountered while shutting down the server
Explanation An unexpected RemoteException, OpException or IOException occurred during server shutdown. There could be problems with loading or writing of security configuration URL property files.
Action Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0051E: IOException when determining whether configuration is current with property file {0} or {1}
Explanation A loadProperties() operation probably failed.
Action Verify the file permissions associated with security configuration URL property file (typically sas.server.props) are read and writable.
SECJ0052E: Authorization failed while invoking ({0}){1} {2} - invalid credentials
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0053E: Authorization failed for {0} while invoking ({1}){2} {3} {4}
Explanation The user does not have the necessary permission to access the resource. This failure may be expected if the user should not be granted access. If this error is unexpected, then there are several possible causes. The user has not been mapped to one the roles protecting the resource if the user requires access to the protected resource. The user is not a member of one of the groups that may have been mapped to one of the roles. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
Action If the authorization failure is unexpected, verify the user, or a group that the user is a member of, is mapped to the role protecting the resource. Verify the WebSphere security LDAP user and group filters configuration match what the LDAP directory expects.
SECJ0054E: No own credentials
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0055E: Authentication failed for {0}. The user id or password may have been entered incorrectly or misspelled. The user id may not exist, the account could have expired or disabled. The password may have expired.
Explanation The user could not be authenticated. The user id or password may have been entered incorrectly. The user may not exist in the user registry that WebSphere is configured to authenticate to. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
Action Verify that the user id and password are entered correctly and exist in the user registry. If LDAP is configured as the security user registry, verify the WebSphere security LDAP user and group filters configuration match what the LDAP directory expects. Consult with the administrator of the user registry that WebSphere is configured to use if the problem persist.
SECJ0056E: Authentication failed for reason {0}
Explanation Authentication failed with the specified reason.
Action Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0057E: Invalid authentication data
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0058E: LTPAServer does not exist
Explanation This is an internal error probably due to LTPAServer initialization problems.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0059E: Cannot create LTPAServer without a password
Explanation The wrong constructor was used when trying to create an instance of LTPAServerBean.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0060E: LTPA configuration not found
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0061E: LTPAConfig creation exception
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0062E: LTPAConfig remove exception
Explanation This is an internal error. The ejbRemove() operation failed on the LTPAConfigBean.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0063E: Credential mapping failed due to invalid access ID
Explanation This is an internal error. Cannot get accessID from credential.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0064E: Credential mapping failed
Explanation The credential mapping can fail for a number of reasons: The credential token is not an instance of a supported CredentialToken type for a mapping. The principal identified in the credential cannot be mapped to an entry or found in the user registry. A user registry exception occurs or if the user registry has been stopped.
Action Verify the user registry is operational. Verify the principal exist in the target user registry if appropriate. The exception reported with this error message may help diagnose the problem.
SECJ0065E: Unsupported encoding
Explanation This is an internal error. An UnsupportedEncodingException occurred when the LTPAServer tried to encode the token value.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0066E: registry impl object has been stopped
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0067E: Cannot credential map given credential token for subject DN {0} into LDAP because of an LDAP filter mapping exception.
Explanation The credential mapping can fail for a number of reasons: The credential token is not an instance of a supported CredentialToken type for a mapping. The principal identified in the credential cannot be mapped to an entry or found in the user registry. A user registry exception occurs or if the user registry has been stopped.
Action Verify the user registry is operational. Verify the principal exist in the target user registry if appropriate. The exception reported with this error message may help diagnose the problem.
SECJ0068E: LDAP initialization error. The exception is {0}.
Explanation An unexpected exception occurred when configuring for LDAP.
Action Verify the WebSphere LDAP configuration settings such as the provider URL are correct in the Security Center GUI. If using SSL make sure the SSL configuration is correct.
SECJ0069E: Problem getting Security Name for privilege id: {0}. The exception is {1}.
Explanation Cannot find a name for the specified SID in the Windows user registry.This can occur if a network time-out prevents the function from finding the name. It also occurs for SIDs that have no corresponding account name, such as a logon SID that identifies a logon session
Action WebSphere may still have a reference to the user in the authorization table but, that user may have been removed from the Windows user registry. If you know the user, remove it from any resource protection permissions in WebSphere. If the user is still valid, then it needs to be recreated in the Windows user registry and then reassigned to proper resource permissions in WebSphere.
SECJ0070E: No privilege id configured for: {0}
Explanation Unable to find a SID for the specified user in the Windows user registry. The user may not exist in the user registry.
Action If appropriate create the user in the user registry.
SECJ0071E: Error retrieving registry entries for the given pattern {0}
Explanation
Action Verify the pattern is correct and not malformed.
SECJ0072E: Error finding registry for type {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0073E: Error finding registry entry for privilege id {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0074E: Error creation user registry. The exception is {0}
Explanation An unexpected exception occurred when trying to load or create the user registry.
Action Verify the CLASSPATH used to start WebSphere is correct and that the jar files have at least the read permission and exist.
SECJ0075E: Unsupported entry type {0}
Explanation This is an internal error. A registry of the specified type could not be looked up.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0076E: Error creating registry entry home
Explanation This is an internal error. Unable to create the home for the registry.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0077E: Registry impl class {0} not found for type {1}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0078E: User registry does not exist
Explanation Unable to lookup RegistryHome in name space or narrow failed. The class for the user registry was not registered in the name space correctly or the class file for the user registry cannot be found.
Action Verify the classpath is correct and that the required classes exist.
SECJ0079E: User type not supported in the user registry
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0080E: User entry is not found in the registry
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0081E: Registry exception
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0082E: Error during web security initialization
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0083E: Error initializing web cache on admin server
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0084W: Error while initializing security web configuration. The exception is {0}.
Explanation An error internal occurred while initializing the security attributes of a Web Application.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0085E: Error initializing admin web cache
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0086E: Configuration error
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0087E: Internal Server Error
Explanation The HttpServletResponse indicates an Internal Server Error has occurred.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0088E: Error deleting permission
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0089E: Error obtaining all permissions
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0090E: Error obtaining method group for method {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0091E: Error looking up Application home
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0092E: Application home not found
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0093E: Relation home not found
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0094E: Admin Application does not exist
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0095E: Exception while initializing admin permissions
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0096E: Error creating method group {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0097E: Error finding method groups
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0098E: Error finding method group {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0099E: Error finding method group for id {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0100E: Error storing method group
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0101E: Error removing method group
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0102E: Error creating method group
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0103E: MethodGroupHome does not exist
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0104E: Error creating predefined method groups
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0105E: An unexpected exception occurred when decoding the value [{0}] for password [{1}] in the security configured URL
Explanation The encoded password cannot be decoded because it is missing or malformed.
Action Verify the passwords in the security config URL are not corrupt or missing. Reset the affected password through the WebSphere Admin console if possible. If all else fails, reset the password to its plain text value in the security config URL (which is usually sas.server.props).
SECJ0106E: An unexpected exception occurred when encoding the value [{0}] for password [{1}] in the security configured URL
Explanation The password cannot be encoded because it is missing or malformed.
Action Verify the passwords in the security config URL are not corrupt or missing. Reset the affected password through the WebSphere Admin console if possible. If all else fails, reset the password to its plain text value in the security config URL (which is usually sas.server.props).
SECJ0107W: The {0} file does not exist
Explanation This exception is unexpected. The cause is not immediately known.
Action If this message is from a warning, then it is a temporary problem which is usually recovered from automatically. If it is not a warning, then check the file permissions for the file to ensure they are readable. If the file is missing, restore it.
SECJ0108E: Unexpected exception occurred when getting user registry or registry attributes.
Explanation This exception is unexpected. The cause is not immediately known.
Action Verify that the user registry has been configured in WebSphere properly.
SECJ0109W: Recovering ({0}) from ({1})
Explanation The security config URL is being recovered from the future version. This may happen if the security config URL is missing or has been deleted.
Action None
SECJ0110E: I/O Error occurred when loading property URL {0}
Explanation A loadProperties() operation probably failed.
Action Verify the file permissions associated with security config URL property file (typically sas.server.props) are read and writable.
SECJ0111W: RunAsMap Not defined properly for Application {0}
Explanation The run-as-bindings size is zero for this application.
Action Verify that the run-as bindings are specified for the application if necessary.
SECJ0112W: Authorization Table Not defined for Application {0}
Explanation No security constraints or roles have been defined for this application.
Action If no security is necessary for this application then ignore this message. Otherwise, review the security requirements of this application.
SECJ0113E: An unexpected exception occurred in getRequiredRoles for method {0} and resource {1}. The exception is {2}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0114W: Unable to extract the security attributes from the credential
Explanation The credential may be malformed or corrupt.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0115W: The credential has a null value for the public name
Explanation The credential is possibly malformed or corrupt.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0116W: Unable to extract the credential token from the credential
Explanation The credential is possibly malformed or corrupt.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0117E: Form login failed for user {0}
Explanation The user could not be authenticated by the FormLogin Servlet. The user id or password may have been entered incorrectly. The user may not exist in the user registry that WebSphere is configured to authenticate to.
Action Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0118E: Authentication error during authentication for user {0}
Explanation An unexpected error occurred during authentication.
Action This is an internal error. Look for previous messages that may be related to the failure.
SECJ0119E: Error getting the web app information for form login. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0120I: Trust Association Init loaded {0} interceptor(s)
Explanation Reports the number of Trust Association interceptors that have been added.
Action None, informational only.
SECJ0121I: Trust Association Init class {0} loaded successfully
Explanation Self Explanatory.
Action None, informational only.
SECJ0122I: Trust Association Init Interceptor signature: {0}
Explanation Reports the signature of the Trust Association interceptor.
Action None, informational only.
SECJ0123E: Trust Association Init Error retrieving class loader. Trust Association cannot be enabled.
Explanation getClassLoader() operation returned null.
Action Verify the appropriate Trust Association classes are installed and the classpath is correct.
SECJ0124E: Trust Association Init No interceptor class {0} found
Explanation The interceptor class file specified in trustedservers.properties cannot be found.
Action Verify the appropriate Trust Association classes are installed and the classpath is correct. Also verify the class specified in the trustedservers.properties file and that the file has at least the read permission.
SECJ0125E: Trust Association Init Unable to load Trust Association class {0}.
Explanation A ClassNotFoundException occurred when trying to load the subject class.
Action Verify the appropriate Trust Association classes are installed and the classpath is correct.
SECJ0126E: Trust Association failed during validation. The exception is {0}
Explanation When the appropriate interceptor is found for a given request, that interceptor then validates its trust with the reverse proxy server. This error message suggests that the validation has failed and therefore the reverse proxy cannot be trusted. For example, an incorrect password may have been provided.
Action In a production environment, the user may be alerted to check if there is an intruder in the system. In a development environment in which testing is underway, verify if the expected inputs from the reverse proxy server is in fact being passed to the interceptor correctly. The nature of these inputs really depends on how trust association is being established. For example, the simplest method would be to pass a username/password through the Basic Authentication header.
SECJ0127E: Unable to find a valid user for Trust Association
Explanation When the WebAuthenticator invoked an interceptor to return the authenticate username, no such username was returned.
Action Verify that the reverse proxy server is putting in the right username in the HTTP request before sending the request to WebSphere
SECJ0128E: An unexpected exception occurred during Trust Association. The exception is {0}.
Explanation This refers to all other exceptions that can be possibly thrown by an interceptor, when validating trust with the reverse proxy server and when getting the authenticated username, aside from WebTrustAssociationFailedException and WebTrustAssociationUserException.
Action Debug the problem from the stack trace that is printed together with this error message. You can also turn on the debug trace to get more information about the nature of the exception.
SECJ0129E: Authorization failed for {0} while invoking {1} on {2}, {3}
Explanation The user does not have the necessary permission to access the resource.
Action Contact your WebSphere security administrator if this is unexpected. The user must be mapped to one the roles protecting the resource if the user requires access to the protected resource.
SECJ0130E: Unable to get source path from request header 'via'
Explanation When using WebSealTrustAssociationInterceptor, the "via" HTTP header in the HTTP Request object will be examined. This message appears when the value for this header is invalid or corrupted.
Action Make sure that WebSeal and/or the HTTP Server is properly working.
SECJ0131E: Authentication failed. Unable to get the mapped credential for SecOwnCredentials.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0132I: Java 2 Security is enabled
Explanation Java 2 Security Manager is installed.
Action None, informational only.
SECJ0133E: Illegal {0} : {1}
Explanation An illegal Permission was attempted. Only the main thread can set the security manager.
Action Verify the code that is trying to set the security manager is not trying to subvert the WebSphere security manager.
SECJ0134E: The current Java 2 Security policy does not permit the requested action.{0}Java 2 Security Permission: {1}, denied with exception message: {2}.{3}Violating code: {4}
Explanation The Java Security Manager checkPermission() threw a SecurityException on the subject Permission.
Action Verify the attempted operation is permitted.
SECJ0135W: Illegal System.exit() attempted
Explanation Only the main thread is allowed to exit the Java VM
Action Verify the code attempting the system exit is not trying to subvert the WebSphere security manager.
SECJ0136I: Custom Registry:{0} has been initialized
Explanation Reports the Custom User Registry implementation that is being used.
Action None, informational only.
SECJ0137E: Could not get EnterpriseAppHome
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0138E: Failed to install the admin Application -
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0139E: Error to get initial naming context
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0140E: Failed to initialize Default SSL Settings
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0141E: Error to initialize default SSL configuration
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0145E: An unexpected exception occurred when decoding password in initial_ssl.properties
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0146I: ${WAS_HOME}/properties/initial_ssl.properties was not found
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0147E: Cannot credential map given credential token for certificate subject DN {0} into LDAP because of an LDAP filter mapping exception. The CertificateMapperException is {1}
Explanation The Certificate mapping filter specified by the user in the global security settings is missing or malformed.
Action Review the certificate mapping filter configuration in the LDAP Advanced properties in the Security Center and verify it is present and correct.
SECJ0148E: Cannot credential map given credential token certificate subject DN {0} with filter {1} into LDAP because multiple entries match the filter. This ambiguous condition is not supported.
Explanation More than one user entry in LDAP matched the certificate mapping filter specified in the global security settings. It is not possible to map a subjectDN in a certificate to more than one user in an LDAP user registry. The mapping filter results in an ambiguous condition that cannot be supported.
Action Specify a certificate mapping filter in the LDAP Advanced properties in the Security Center.
SECJ0149E: Cannot credential map given credential token for certificate subject DN {0} with filter {1} into LDAP because a NamingException occurred when searching LDAP. The NamingException is {2}
Explanation A naming exception occurred when searching LDAP.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0150E: Cannot credential map given credential token for certificate subject DN {0} with filter {1} into LDAP because no entry in LDAP matches the DN or filter
Explanation No entry in LDAP can be found with the subject DN in the certificate or found with the filter.
Action This may be the expected result depending on the subject DN in the certificate and filter. If the response is unexpected, review the certificate mapping filter defined in the LDAP advanced properties in the Security Center.
SECJ0151E: Cannot create a credential for the mapped credential token into LDAP with subjectDN {0} and mapped name {1} using filter {2}. The exception is {3}
Explanation The DN in the certificate was successfully mapped to an entry in LDAP but, an unexpected exception occurred when trying to create a credential for the mapped entry.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0152W: SecurityLevel was either missing or set to a wrong value (valid values are: high, medium, low); default to high.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0153E: Invalid LDAP user ID
Explanation Using invalid user ID or the user ID is not a directory entry. The directory administration ID (root DN) is not a directory entry on most LDAP servers.
Action Verify the user ID is a valid directory entry.
SECJ0154E: SSO Configuration error. FormLogin is configured for web application {0} but SSO is not enabled in the global security settings. SSO must be enabled to use FormLogin.
Explanation When LTPA is the authentication mechanism SSO must also be enabled if any web applications use FORM login.
Action Enable SSO in the global security settings and restart WebSphere
SECJ0155E: Deployment descriptor configuration error. security-role-ref {0} in ejb-jar.xml is not mapped to any security role in bean {1}, module {2}, application {3}.
Explanation A security role ref in the specified EJB's ejb-jar.xml file has not been mapped to a security role. This is a configuration error.
Action The security-role-ref in the EJB's ejb-jar.xml deployment descriptor should be mapped to a security role.
SECJ0156E: Unable to initialize user registry class {0} for type {1} due to exception: {2}
Explanation The WebSphere security code couldn't find, load, or had problems loading the user registry class.
Action The exception mentioned in the message should provide additional clues including the class or file that could not be found or loaded. Verify the mentioned file exists in the correct directory and PATH.
SECJ0157I: Loaded Vendor AuthorizationTable: {0}
Explanation The Vendor specified Authorization Table is loaded successfully.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0158I: Problem loading class {0}, using default authorization table provided by WebSphere
Explanation The Vendor specified Authorization Table could not be loaded successfully. Therefore, using WebSphere provided authorization table.
Action Check to make sure that the Vendor's implementation of Authorization Table is in the CLASSPATH and could be loaded.
SECJ0159E: Cannot find class {0}
Explanation The Vendor specified Authorization Table class could not be found in the CLASSPATH.
Action Check to make sure that the Vendor's implementation of Authorization Table as specified in sas.server.props is in the CLASSPATH.
SECJ0160E: Can not instantiate class {0}
Explanation The Vendor specified Authorization Table class could not be instantiated.
Action Check to make sure that the Vendor's implementation of Authorization Table as specified in sas.server.props could be loaded and instantiated.
SECJ0161E: Error returned from Vendor AuthorizationTable. The exception is {0}
Explanation The Vendor specified Authorization Table failed during authorization check.
Action Please look at Vendor's specific exception for details. If vendor's specific exception is not present, Contact your service representative with exception stack trace information present in the error log.
SECJ0162E: Vendor''s specific exception. The exception is {0} .
Explanation This indicates the Vendor's specific error. Example:- Server not started, Network failure, Server failed.
Action Depends on the error.
SECJ0163E: Generic Error from Vendor AuthorizationTable
Explanation Unknown error from Vendor's authorization table
Action Contact your service representative with exception stack trace information present in the error log.
SECJ0164E: Error number {0} while calling the operating system API {1}
Explanation An error was returned by the operating system API
Action Depending on the API being called, please check the operating system specific documentation
SECJ0165W: Expand exception occurred. Skip the permission entry in app.policy file. The exception is {0}.
Explanation While expanding the permission in application policy file, caught an expand exception
Action Check the permission entry syntax in application policy file.(app.policy or was.policy). To identify which policy file has problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show was.policy name.
SECJ0166W: Expand exception occurred. Skip the grant entry in app.policy file. The exception is {0}.
Explanation While expanding the grant entry in application policy file, caught an expand exception
Action Check the grant entry syntax in your application policy file. (app.policy or was.policy). To identify which policy file has problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show was.policy name.
SECJ0167W: Expand exception occurred. Skip the permission entry in filter.policy file. The exception is {0}.
Explanation While expanding the permission entry in filter.policy file, caught an expand exception
Action Check the permission entry syntax in filter policy file.
SECJ0168W: Keystore {0} of type {1} is being ignored
Explanation Keystore of the above type is not supported.
Action Please use the supported type of keystores.
SECJ0169W: Expand exception occurred. Skip the permission entry. The exception is {0}
Explanation While expanding the permission, caught an expand exception
Action Check the permission entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0170W: Expand exception occurred. Skip the grant entry. The exception is {0}.
Explanation While expanding the grant entry, caught an expand exception
Action Check the grant entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0171W: Expand exception occurred. Skip the signedby key entry. The exception is {0}.
Explanation While expanding the signedby entry, caught an expand exception
Action Check the signedby entry syntax in your policy file. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0172E: Error {0} in encoding the FilePath
Explanation While encoding the FilePath, there was an error.
Action Please check the specified syntax. To identify which policy file has a problem, enable security trace for component com.ibm.ws.security.policy.*. trace.log will show the policy file name.
SECJ0173W: Grant entry with codebase {0} and signedby {1} is being ignored
Explanation In the system extension policy files, the grant entries should not specify codebase and signedby values
Action Please remove the codebase and signedby values from the grant entry in the system extension policy file. (spi.policy or library.policy)
SECJ0174W: Permission entry {0} is being ignored
Explanation In the system extension policy files, the permission entries with signatures are not supported in the current version.
Action Please remove the signature values from the permission entry in the system extension policy file. (spi.policy or library.policy)
SECJ0175E: Caught an exception while retrieving data from the hashmap for the keyword {1}. The exception is {0}.
Explanation The data stored for the keyword "type" in the hashmap is incorrect
Action This is an internal error. However, it could be caused by an incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0176E: Caught an exception while getting the policy template of type {1}. The exception is {0}.
Explanation Could not retrieve the policy template of the above type.
Action This is an internal error. However, it could be caused by an incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0177W: Caught an exception while converting classpath {1} to URL. The exception is {0}.
Explanation Could not convert the above classpath to a URL
Action Please check the classpath. Usually, this path was picked up from xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0178E: Caught an exception while retrieving the data from the hashmap for the keyword {1}. The exception is {0}.
Explanation Could not retrieve the resource adaptor policy file from the hashmap passed to setupPolicy().
Action Please check the data stored in the hashmap for the resource adaptor keyword. It could be caused by incorrect xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0179E: Caught an exception while trying to get the Resource adaptor''s absolute file path. The exception is {0}.
Explanation Could not get the absolute filepath of the resource adaptor policy file.
Action Please check the filepath specified in resource.xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0180E: Caught an exception while trying to get the data from the hashmap using the keyword {1}. The exception is {0}.
Explanation Could not retrieve the deployed application policy file from the hashmap passed to setupPolicy().
Action This is an internal error. However, it could be caused by incorrect data in xml file. Please check the type of the policy file and the hashmap being passed to setupPolicy(). Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0181W: Caught an exception while trying to get the resource adaptor module {1} absolute filepath. The exception is {0}.
Explanation Could not get the resource adaptor module's absolute filepath.
Action It could be caused by incorrect data in resources.xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0182W: Caught an exception while trying to get the Canonical path for the file {1}. The exception is {0}.
Explanation Could not get the Canonical path for the specified file
Action Please check the specified file name passed to security. It could be caused by incorrect data in xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0183W: Caught an exception while trying to convert the filepath {1} to URL. The exception is {0}.
Explanation Could not convert the specified filepath to URL.
Action Please check the specified filepath. It could be caused by incorrect data in xml file.Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0184W: Caught an exception while trying to get the absolute path for the resource adaptor {1} in removePolicy(). The exception is {0}.
Explanation Could not get the absolute path for the resource adaptor in removePolicy().
Action Please check the specified path. It could be caused by incorrect data in xml file. Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0185W: Caught an exception while trying to get the absolute path for the module {1} in removePolicy(). The exception is {0}
Explanation Could not get the absolute path for the module in removePolicy().
Action Please check the specified path. It could be caused by incorrect data in xml file.Please enable security trace with com.ibm.ws.security.policy.* to get more detailed information.
SECJ0186E: Caught IOException while creating template for System Extension Policy of type {1} The exception is {0}
Explanation IOException occurred when creating the system extension template in the hashmap of all the templates.
Action Please check the IOException to see the cause for not being able to create the system extension template in the hashmap.
SECJ0187E: Caught ParserException while creating template for System Extension Policy of type {1} The exception is.{0}
Explanation ParserException occurred when creating the system extension template in the hashmap of all the templates.
Action Please check the ParserException data. Check the specified policy file.
SECJ0188E: Caught IOException while creating template for Application Policy {0}. The exception is {1}.
Explanation IOException occurred when creating the application policy template in the hashmap of all the templates.
Action Please check the specified policy file.
SECJ0189E: Caught ParserException while creating template for Application Policy {0}. The exception is {1}.
Explanation ParserException occurred when creating the application policy template in the hashmap of all the templates.
Action Please check the ParserException data. Check the specified policy file.
SECJ0190E: Caught IOException while creating template for was.policy {0}. The exception is {1}.
Explanation IOException occurred when putting the was.policy template in the hashmap of all the templates.
Action Please check the specified was.policy file.
SECJ0191E: Caught ParserException while creating template for was.policy {0} . The exception is {1}.
Explanation ParserException occurred when putting the was.policy template in the hashmap of all the templates.
Action Please check the ParserException data. Check the specified was.policy file.
SECJ0192E: Caught IOException while creating template for resource adaptor(read from WCCM) {1}. The exception is {0}.
Explanation IOException occurred when creating the resource adaptor template in the hashmap of all the templates.
Action Please check the specified ra.xml file's permission specification.
SECJ0193E: Caught ParserException while creating template for resource adaptor(read from ra.xml) {0}. The line is [{1}]. The exception is {2}.
Explanation ParserException occurred when putting the resource adaptor template in the hashmap of all the templates.
Action Please check the ParserException data. Check the ra.xml's permission specification.
SECJ0194E: Caught IOException while adding permission to the set of filtered permissions. The exception is {0}.
Explanation IOException occurred when adding permission to the set of filtered permissions.
Action Please check the filter.policy file.
SECJ0195E: Caught ParserException while adding permission to the set of filtered permissions. The exception is {0}.
Explanation ParserException occurred when adding permission to the set of filtered permissions.
Action Please check the ParserException data.
SECJ0196W: Custom permission {0} is being used in an application policy file {1}
Explanation Custom permission is being used in an application policy file.
Action Please make sure that it is all right to use a custom permission in an application policy file.
SECJ0197E: Caught Invocation TargetException while constructing the permission object. This exception might be due to syntax error in the policy file. The exception is {0}.
Explanation Invocation TargetException occurred while constructing the permission object.
Action Please check the exception.
SECJ0198E: Caught an exception while constructing the permission object. The exception is {0}.
Explanation An Exception occurred while constructing the permission object.
Action Please check the exception.
SECJ0199E: Caught an IOException while adding the grant entry to the policy template of the resource adaptor {1} . The exception is {0}.
Explanation An IOException occurred while adding the grant entry to the policy template of the resource adaptor.
Action Please check the specified ra.xml file.
SECJ0200E: Caught a ParserException while adding the grant entry {1} to the policy template of the resource adaptor {0}. The exception is {2}.
Explanation A ParserException occurred while adding the grant entry to the policy template of the resource adaptor.
Action Please check the syntax of permission specification in the specified ra.xml
SECJ0201I: Error number {0} while calling the operating system API {1}
Explanation The above error number was returned by the above API.
Action Depending on the API being called, please check the operating system documentation for the API.
SECJ0202I: Admin application initialized successfully
Explanation The Admin application initialized successfully
Action None. Informational only.
SECJ0203I: Naming application initialized successfully
Explanation The Naming application initialized successfully
Action None. Informational only.
SECJ0204I: Rolebased authorizer initialized successfully
Explanation The Rolebased authorizer initialized successfully
Action None. Informational only.
SECJ0205I: Security Admin mBean registered successfully
Explanation The Security Admin mBean registered successfully
Action None. Informational only.
SECJ0206E: Error creating or registering {0} mBean. The exception is {1}
Explanation An unexpected exception occurred when trying to create or register an mBean.
Action There may be a problem with the configuration. The exception may include details.
SECJ0207E: Failed to load {0} resource from cell. The exception is {1}
Explanation The specified resource could not be loaded due to an exception.
Action The failure may be related to a configuration problem related to the resource.
SECJ0208E: An unexpected exception occurred when attempting to authenticate the server''s id during security initialization. The exception is {0}.
Explanation The userId and password specified for the server's identity when configuring global security could not be used to authenticate the server.
Action Verify that the userId and password are valid and meet the requirements for the user registry or authentication mechanism.
SECJ0209E: An unexpected exception occurred when attempting to update the JAAS login configuration with WCCM JAAS configuration information. The exception is {0}
Explanation The WCCM JAAS login configuration information could not be pushed to the JAAS configuration object.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0210I: Security enabled {0}
Explanation Reports current security enabled or disabled status.
Action None. Informational only
SECJ0211E: Failed to lookup or rebind security server with name {0}. The exception is {1}.
Explanation An unexpected error occurred. It could be that the Cell Manager or Node Agent are not started.
Action If a remote security server was specified when enabling global security, verify that the Node Agent and Cell Manager are running.
SECJ0212I: WCCM JAAS configuration information successfully pushed to login provider class.
Explanation The WCCM JAAS login configuration information was pushed to the JAAS configuration object.
Action None. Informational only.
SECJ0213E: Unexpected JAAS login provider class {0} is currently configured. The expected configured class is {1}. When WebSphere security is enabled, this class is required.
Explanation WebSphere provides an implementation of javax.security.auth.login.Configuration and dynamically installs this class at server startup. Either some application code has installed a different login provider class or a problem occurred when WebSphere tried to dynamically install the class.
Action Check for other server startup warning or error messages.
SECJ0214W: Unexpected JAAS login provider class {0} is currently configured. The expected configured class is {1}. When WebSphere security is enabled, this class is required.
Explanation WebSphere provides an implementation of javax.security.auth.login.Configuration and dynamically installs this class at server startup. Either some application code has installed a different login provider class or a problem occurred when WebSphere tried to dynamically install the class.
Action Check for other server startup warning or error messages.
SECJ0215I: Successfully set JAAS login provider configuration class to {0}.
Explanation WebSphere provides an implementation of the javax.security.auth.login.Configuration class. This class was successfully set at server startup.
Action None. Informational only.
SECJ0216E: An exception occurred when setting JAAS login provider configuration class to {0}. The exception is {1}.
Explanation WebSphere provides an implementation of the javax.security.auth.login.Configuration class. This class could not be set at server startup.
Action Configuration.class may not be present. This is an internal error.
SECJ0217W: Detected a duplicate JAAS LoginModule alias name {0} when processing JAAS configuration information.
Explanation A duplicate JAAS LoginModule alias name exist either in a JAAS login URL or in the security.xml file. The duplicate will be replaced with the last one processed.
Action Verify no duplicate JAAS LoginModule aliases exist in the login URLs or in the security.xml file.
SECJ0218E: Exception caught retrieving RoleBasedAuthorizer. The exception is {0}.
Explanation The Rolebased authorizer could not be retrieved due to an exception.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0219E: Unable to get or use role based authorizer because application {0} has not been loaded.
Explanation The application must be loaded for the role base authorizer can be used to enforce authorization.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0220W: The role based authorizer for module {0} has already been loaded.
Explanation The role based authorizer will load only once per module.
Action None, informational only.
SECJ0221E: An unexpected exception occurred in findMatchingMethod for method {0} and bean {1}, the exception is {2}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0222E: An unexpected exception occurred when trying to create a LoginContext. The LoginModule alias is {0} and the exception is {1}.
Explanation A JAAS LoginContext could not be created due to the unexpected exception.
Action The problem could be due to a configuration error.
SECJ0223E: User {0} authenticated successfully but unable to send redirect to the original request page. The {1} cookie is not present.
Explanation The HTTP cookie that contains the originally requested page was not found.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0224E: An unexpected exception occurred when trying to configure the security related web attributes for web applications {0}. The exception is {1}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0225W: PD Authentication disabled.
Explanation PD Authentication disabled.
Action None, informational only.
SECJ0226E: The LocalOS server ID ({0}) should not be the same value as the LocalOS realm ({1}) in the security.xml.
Explanation When the LocalOS server ID is equal to the LocalOS realm, the access ID returned by the operating system is the machine ID not the server ID.
Action Make sure that the server ID is different from the machine ID.
SECJ0227E: An exception occurred when creating class of type {0}. The exception is {1}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0228E: Object of type {0} is null.
Explanation Object created by reflection is null.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0229E: Method {0} of object of {1} type is null.
Explanation Method returned by reflection is null.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0230E: Invoking reflection method {0} of object type {1} throws exception {2}.
Explanation Reflection method invocation failed.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0231I: The Security component''s FFDC Diagnostic Module {0} registered successfully: {1}.
Explanation Describes whether or not the Security component's FFDC Diagnostic module was successfully registered.
Action None. Informational only.
SECJ0232E: An unexpected exception occurred when trying to get the User Registry from the Security Server. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0233E: An unexpected exception occurred when trying to get users from the User Registry with pattern {0} and limit {1}. The exception is {2}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0234E: An unexpected exception occurred when trying to get groups from the User Registry with pattern {0} and limit {1}. The exception is {2}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0235E: An unexpected exception occurred when trying to export the LTPA Keys from the security mbean. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0236E: An unexpected exception occurred when trying to import the LTPA Keys from the security mbean with properties {0}. The exception is {1}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0237E: One or more vital LTPAServerObject configuration attributes are null or not available. The attributes and values are password : {0}, expiration time {1}, private key {2}, public key {3}, and shared key {4}.
Explanation LTPA is the configurated authentication mechanism but it has not yet been properly configured. Keys or other LTPA configuration attributes are missing.
Action Disable WebSphere security, restart the application server and properly configure LTPA authentication.
SECJ0238E: An unexpected exception occurred when trying to create the initial LTPAServerObject. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0239I: Security service initialization started
Explanation Security service initialization started.
Action None. Informational only
SECJ0240I: Security service initialization completed successfully
Explanation Security service initialization started.
Action None. Informational only
SECJ0241I: Security service initialization completed successfully
Explanation Security service initialization started.
Action None. Informational only
SECJ0242I: Security service is starting
Explanation Security service started.
Action None. Informational only
SECJ0243I: Security service started successfully
Explanation Security service started.
Action None. Informational only
SECJ0244I: Security service failed to start successfully
Explanation Security service started.
Action None. Informational only
SECJ0245E: An unexpected exception occurred when the SecurityServerFactory tried to create the SecurityServer. The exception is {0}.
Explanation An error occurred that prevented the SecurityServer from being created.
Action The log should contain additional errors that may indicate the cause of the problem.
SECJ0246E: Caught unexpected exception in retrieving ORB SSL settings {0}
Explanation An unexpected exception occurred retrieving the ORB SSL settings.
Action Verify the property file, usually sas.server.props contents. Contact your service representative if the problem persists.
SECJ0247I: ORB SSL Key File or Passwords settings were missing in server-cfg.xml
Explanation ORB SSL Key File or Passwords settings were missing in server-cfg.xml
Action Verify the server-cfg.xml file.
SECJ0248I: Caught unexpected exception in retrieving ORB SSL initialization. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0249E: Failed to cleanup. The exception is {0}.
Explanation An unexpected exception occurred while clean up of specified repository.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0250E: Error creating security server. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0251E: Error getting Initial Naming Context. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0252E: Error getting remote security server. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0253E: Generic Exception while getting remote security server. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0254E: Error getting Initial Naming Context. The exception is {0}.
Explanation javax.naming.NamingException occurred when getting Initial Naming Context.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0255E: Error creating security server/ The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0256E: Error binding SecurityServer to naming. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0257E: Failed to find security server in name space. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0258E: Cannot find user registry. The exception is {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0259E: IOException from CallbackHandler. The exception is {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0260E: Unsupported {0} callback in CallbackHandler. The exception is {1}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0261E: Something wrong during LoginModule commit. The exception is {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0262E: Exception occurred when removing {0} during cleanup. The exception is {1}
Explanation Unexpected exception occurred when removing the specified principal during cleanup.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0263E: Exception occurred when removing WSCredential during cleanup. The exception is {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0264E: fillAccessids: Error getting user registry. The exception is {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0265E: removeAccessIds: Error getting user registry. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0266E: Failed to create a new web attribute.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0267E: Failed to get RoleBasedConfigurator. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0268E: Problem loading class {0}, using default authorization table provided by WebSphere
Explanation The Vendor specified Authorization Table could not be loaded successfully. Therefore, using WebSphere provided authorization table.
Action Check to make sure that the Vendor's implementation of Authorization Table is in the CLASSPATH and could be loaded.
SECJ0269E: Failed to get actual credentials. The exception is {0}.
Explanation java.lang.reflect.InvocationTargetException occurred when try to execute getActualCredential() method.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0270E: Failed to get actual credentials. The exception is {0}.
Explanation Unexpected exception occurred when try to execute getActualCredential() method.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0271E: Error restoring original credentials.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0272E: Error setting to system credentials.
Explanation Unexpected exception occurred while restoring original credentials.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0273E: Failed to load SecurityServer.xml. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0274E: Error getting Initial Naming Context. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0275E: Error trying to find user registry. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0276E: BasicAuthData credential is already destroyed. The exception is {0}.
Explanation CredentialDestroyedException occurred while trying to get BasicAuthData. The credential was already destroyed.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0277E: BasicAuthData credential is already expired. The exception is {0}.
Explanation javax.security.auth.login.CredentialExpiredException occurred while trying to get BasicAuthData.
Action refresh the credential.
SECJ0278E: TokenData credential is already destroyed. The exception is {0}.
Explanation CredentialDestroyedException occurred while trying to get credential token. The credential was already destroyed.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0279E: TokenData credential is already expired. The exception is {0}.
Explanation javax.security.auth.login.CredentialExpiredException occurred while trying to get token.
Action refresh the credential.
SECJ0280E: Error getting realm from registry. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0281E: Error creating user registry object. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0282E: Error getting initial context. The exception is {0}.
Explanation javax.naming.NamingException occurred while getting the initial naming context.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0283E: Error binding User Registry. The exception is {0}.
Explanation javax.naming.NamingException occurred while rebinding the user registry.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0284E: Error trying to find User Registry. The exception is {0}.
Explanation javax.naming.NamingException occurred while finding the user registry.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0285E: Failed to retrieve RoleBasedAuthorizer. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0286W: Error during security initialization.
Explanation Unexpected exception occurred when initializing security server component.
Action None. This is warning.
SECJ0287E: Failed to call setupPolicy for {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0288E: Error during security initialization.
Explanation Unexpected exception occurred when updating authorization table.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0289E: Failed to call removePolicy for {0}.
Explanation Unexpected exception occurred when trying to call removePolicy() for specified type.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0290W: All subjects assigned to Special role DenyAllRole for application {0} are removed.
Explanation All subjects assigned to Special role DenyAllRole for the specified application are removed.
Action None. This is a warning.
SECJ0291E: Failed to retrieve the information of Resource Adapter for provider ( {0} ) to call setupPolicy().
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0292E: Failed to retrieve the information of Resource Adapter of {0} to call setupPolicy().
Explanation Unexpected exception occurred when trying to retrieve the information of Resource Adapter to call setupPolicy().
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0293E: No registry.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0294E: Error setting properties to file ({0}). The exception is {1}.
Explanation IOException occurred when setting properties to specified file.
Action Verify if the property file exist, or the permission.
SECJ0295E: Error getting properties to file ({0}). The exception is {1}.
Explanation IOException occurred when getting properties to specified file.
Action Verify if the property file exist, or the permission.
SECJ0296E: Error checking password for user :{0}. The exception is {1}.
Explanation com.ibm.websphere.security.PasswordCheckFailedException occurred when checking the password for specified user.
Action Verify the password for the specified user.
SECJ0297E: Error checking password for user :{0}. The exception is {1}.
Explanation com.ibm.websphere.security.CustomRegitryException exception occurred when checking the password for specified user.
Action Verify the password for the specified user.
SECJ0298E: Error checking password for user :{0}. The exception is {1}.
Explanation Unknown exception occurred when checking the password for specified user.
Action Verify the password for the specified user.
SECJ0299E: Caught an exception while decoding the file path: {0}. The exception is {1}.
Explanation Failed to decode the specified file. The details is shown in the exception.
Action Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0300W: The file or directory ( {0} ) does not exist.
Explanation The specified file or directory does not exist.
Action Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0301W: Failed to convert a file path {0} to CodeSource. The exception is {1}
Explanation MalformedURLException occurred when trying to convert the specified path to URL.
Action Verify the policy files, xml files(resource.xml) to confirm the classpath specified in them are correct.
SECJ0302W: No alias name for {0}.
Explanation This configuration does not have any alias name.
Action This is warning.
SECJ0303E: Error getting registry''s realm. The exception is {0}
Explanation Exception occurred when getting registry's realm.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0304E: Cannot get user registry. The exception is {0}.
Explanation Unexpected exception occurred when getting user registry.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0305I: The role-based authorization check failed for {0} operation {1}:{2}. The user {3} (unique ID: {4}) was not granted any of the following required roles: {5}.
Explanation The caller does not have the necessary permission, this problem can occur because no credential is found on the thread, the caller is not authenticated, or the accessId might be null.
Action If the failure is unexpected, verify that the caller has been granted the required role.
SECJ0306E: No received or invocation credential exist on the thread. The Role based authorization check will not have an accessId of the caller to check. The parameters are: access check method {0} on resource {1} and module {2}. The stack trace is {3}.
Explanation No invocation or received credentials were established on this thread. This may cause the role based authorization check to fail.
Action The stack trace is obtained by a local throw catch block that maybe useful for debugging the problem.
SECJ0307E: Unexpected exception is caught when trying to determine the code base location. Exception: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0308I: Java2 security is installed.
Explanation JAVA2 security is enabled.
Action None, informational only.
SECJ0309I: Java 2 Security is disabled.
Explanation Java 2 Security Manager is NOT installed.
Action None, informational only.
SECJ0310E: Caught a ParserException while adding the grant entry to the policy template {1}. The exception is {0}
Explanation A ParserException occurred while adding the grant entry to the policy template.
Action Please check the ParserException data. Please check the specified policy file.
SECJ0311W: Caught an exception while trying to get the module {1} absolute filepath. The exception is {0}.
Explanation Could not get the module's absolute filepath.
Action Please check the filepath given to load the module.
SECJ0312W: {$Application} phrase should not include ${was.module.path} keyword.
Explanation Syntax error in the policy file. ${Application} phrase should not include ${was.module.path} keyword. This entry is ignored.
Action Please check the application policy file.
SECJ0313I: Java 2 Security Manager debug message flags are initialized: TrDebug: {0}, Access: {1}, Stack: {2}, Failure: {3}, Rethrow {4}
Explanation This message provides the current value of the java.security.debug property which is used to enable various debug information related to Java 2 Security.
Action None, this is informational only.
SECJ0314W: Current Java 2 Security policy reported a potential violation of Java 2 Security Permission. Please refer to InfoCenter for further information.{0}Permission:{1}Code:{2}{3}Stack Trace:{4}Code Base Location:{5}
Explanation The Java Security Manager checkPermission() threw a SecurityException on the subject Permission. A caller on the call stack does not have the required permission. This may not be a problem if the caller properly handles this exception.
Action Verify the attempted operation is permitted by examining all Java 2 security policy files and application code. Additional permissions may be required, a doPrivileged API may be needed in some code on the call stack, or the Security Manager properly prevented access to a resource the caller does not have permission to access.
SECJ0315W: The permission {0} specified in the application policy file:{1} does not exist.
Explanation The permission class {0} specified in the application policy file(was.policy or app.policy) does not exist.
Action Please fix the specified application policy file.
SECJ0316W: The permission {0} specified in the filter policy file(filter.policy) does not exist.
Explanation The permission class {0} specified in the filter policy file does not exist.
Action Please fix the filter policy file.
SECJ0317W: The permission {0} specified in the application policy file({1}) is a part of the permission {2} specified in filter.policy.
Explanation The permission class {0} specified in the application policy is not be removed. However, it is a part of the permission specified in filter.policy.
Action If the permission should be filtered out, divide the permission specified in the application policy.
SECJ0318I: The permission {0} specified in the application policy file({1}) were filtered out.
Explanation The permission {0} specified in the application policy was removed because filer.policy has the same entry.
Action none. This is an informational message.
SECJ0319I: java.security.AllPermission was found in the application policy file {0}.
Explanation java.securityAllPermission was found in the application.
Action none. This is an informational message.
SECJ0320E: Error parsing {0}: {1}
Explanation There is a syntax error in the policy file.
Action Please use ${java.home}/jre/bin/policytool to verify the syntax or edit the policy file and correct the syntax error.
SECJ0321E: Role based authorization is caller in role failed for security name {0}, accessId {1}, and role name {2}.
Explanation The caller does not have the necessary permission, there was no credential on the thread, the caller is not authenticated, or the accessId could be null.
Action If the failure is unexpected, verify the caller has been granted the required role.
SECJ0322W: Missing attribute in Security Configuration.
Explanation Required attribute CertificateFilter is missing. Certificate Filter is required when CertificateMapMode is CERTIFICATE_FILTER.
Action Set CertificateFilter in the advanced LDAP settings.
SECJ0323E: Invalid LDAP user/group ID
Explanation Using invalid user/group ID or the user/group ID is not a directory entry. The directory administration ID (root DN) is not a directory entry on most LDAP servers.
Action Verify the user/group ID is a valid directory entry.
SECJ0324E: Error during Java 2 Security and Dynamic Policy initialization. The exception is {0}.
Explanation An unexpected error occurred during Java 2 Security and Dynamic Policy initialization.
Action This is a general error. Look for previous messages that may be related to the failure or a configuration problem. Enabling security debug trace for security component com.ibm.ws.security.* may yield additional information.
SECJ0325W: The permission {0} specified in the policy file {1} is unresolved.
Explanation The permission class {0} specified in the policy file was not loaded.
Action Please confirm that the specified permission in then policy file is correct. If permission class is incorrect, this warning is issued.
SECJ0326E: No received or invocation credential exist on the thread. The Role based authorization check will not have an accessId of the caller to check. The parameters are: role name {0}. The stack trace is {1}.
Explanation No invocation or received credentials were established on this thread. This may cause the role based authorization check to fail.
Action The stack trace is obtained by a local throw catch block that may be useful for debugging the problem.
SECJ0327E: Problem loading the registry properties file. The exception is {0}.
Explanation Unexpected exception occurred when loading registry properties file.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0328E: Registry implementation file is missing.
Explanation Cannot locate the registry implementation file.
Action If you are using a Custom Registry make sure that your provide the registry implementation file in the GUI or in the scripting (whichever is being used). If you are using WAS supplied registries contact your service representative if the problem persists.
SECJ0329E: The registry implementation file {0} is not a instance of the supported user registries.
Explanation This can happen when using custom registries and if they are not instances of UserRegistry or CustomRegistry.
Action Make sure you implement the UserRegistry interface for your custom registry.
SECJ0330E: The registry implementation file {0} cannot be loaded because of the following exception {1}
Explanation This can happen when the specified custom registry cannot be loaded.
Action The custom registry implementation file should be in the classpath as mentioned in the custom user registry section in the InfoCenter. If this happens for WAS provided registries contact your service representative if the problem persists.
SECJ0331E: The registry implementation file {0} cannot be initialized because of the following exception {1}
Explanation The specified custom registry implementation cannot be initialized.
Action Make sure all the properties required for the custom registry initialization are passed through GUI or scripting (whichever is being used).If this happens for WAS provided registries contact your service representative if the problem persists.
SECJ0332E: The checkPassword method failed for user {0}.
Explanation The checkPassword method failed to return a user.
Action If using WAS provided registries this problem should have preceeded with other authentication related exception(s). Look into them to fix the actual authentication problem. In addition if a custom registry is being used make sure you return a valid userId after a successful authentication.
SECJ0333E: The mapCertificate method failed.
Explanation The mapCertificate method failed to return a user from the certificate chain.
Action Make sure the certificate should contain a valid user in the registry. This problem should have preceeded with other exception(s). Looking into them would help in narrowing down the problem. In addition if a custom registry is being used make sure you return a valid userId after successfully mapping the certificate.
SECJ0334E: Cannot create credential for null user.
Explanation Internal Error. The user name provided to create the credential is null.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0335E: Authentication failed for user {0}.
Explanation The registry failed to return a user after authentication.
Action This would happen if the authentication was not successful and the custom registry did not throw exceptions to indicate this. Make sure you are entering a current userID and password for authentication. This problem might have preceeded by other problems. Looking at those problems might narrow the problem down.
SECJ0336E: Authentication failed for user {0} because of the following exception {1}
Explanation Authentication failed with the specified reason.
Action Verify that the user id and password are entered correctly. Consult with the administrator of the user registry if the problem persist.
SECJ0337E: The mapCertificate method is not supported.
Explanation Internal Error.
Action Information purposes only.
SECJ0338E: The following error occurs when getting the display name of the group {0}, {1}.
Explanation Error getting display name of a group.
Action Make sure the group is valid and has a display name.
SECJ0339E: Could not get the display name of the group {0}.
Explanation Problem getting display name of a group.
Action Make sure the group is valid and has a display name.
SECJ0340E: Could not get the uniqueId for the group {0}.
Explanation Problem getting uniqueId of a group.
Action Make sure the group is valid in the registry and if it is a custom registry make sure it also has an uniqueId.
SECJ0341E: Could not get the uniqueId for the group {0} because of the following exception {1}.
Explanation Problem getting uniqueId of a group.
Action Make sure the group is valid in the registry and if it is a custom registry make sure it also has an uniqueId.
SECJ0342E: Could not get the groups matching the pattern {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the groups matching the pattern exist in the registry. Contact your service representative if the problem persists.
SECJ0343E: Could not get the groups that the user {0} belongs to.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0344E: Could not get the groups that the user {0} belongs to because of the following exception {1}.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0345E: Could not get the users in the group {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0346E: Could not get the name of the group whose uniqueId is {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0347E: Could not get the name of the group whose uniqueId is {0}.
Explanation Internal Error.
Action Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0348E: Could not get the display name of the user {0}.
Explanation Internal Error.
Action Make sure the user is valid and has a display name. Contact your service representative if the problem persists.
SECJ0349E: Could not get the display name of the user {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the user is valid and has a display name. Contact your service representative if the problem persists.
SECJ0350E: Could not get the uniqueId of the user {0}.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0351E: Could not get the uniqueId of the user {0} due to the following exception {1}.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0352E: Could not get the users matching the pattern {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the users matching the pattern exist in the registry. Contact your service representative if the problem persists.
SECJ0353E: Could not get the name of the user whose uniqueId is {0}.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0354E: Could not get the name of the user whose uniqueId is {0} because of the following exception {1}.
Explanation Internal Error.
Action Make sure the user is valid. Contact your service representative if the problem persists.
SECJ0355E: Validating the group {0} throws the following exception {1}.
Explanation Internal Error.
Action Make sure the group is valid. Contact your service representative if the problem persists.
SECJ0356E: Could not get the realm for the registry in windows.
Explanation Not able to get the hostname of the Windows machine or the domain controller.
Action Make sure that the user who is running WAS has administrative and "act as part of operating system" privilege in the Windows machine and also an administrator in the domain machine. Contact your service representative if the problem persists.
SECJ0357E: The registry initialization failed with the following exception {0}.
Explanation Registry cannot be initialized. Internal Error.
Action Make sure that the user who is running WAS has administrative and "act as part of operating system" privilege in the Windows machine and also an administrator in the domain machine. Contact your service representative if the problem persists.
SECJ0358E: Validating the user {0} throws the following exception {1}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0359E: Could not get the uniqueId for {0} because of the following exception {1}.
Explanation Problem getting uniqueId of a user/group.
Action Make sure that the user or group is valid in the registry and if it is a custom registry make sure an uniqueId exists for user or group.
SECJ0360E: Authentication failed for {0} because multiple users matched the user.
Explanation Authentication failed because multiple users found in the registry with the same name.
Action When using LDAP make sure that shortname used for the user is unique. For example, if "uid" is used as the shortname make sure the uid are unique in the registry.
SECJ0361E: Authentication failed for {0} because user is not found in the registry.
Explanation Authentication failed because of non existent user.
Action Make sure the user is valid in the registry. When using LDAP make sure that the user is searchable. The admin id in some LDAP servers may not be searchable.
SECJ0362E: Cannot create credential for the user {0}.
Explanation Cannot find user to create credential.
Action Make sure the user is valid in the registry. Contact your service representative if the problem persists.
SECJ0363E: Cannot create credential for the user {0} because of the following exception {1}.
Explanation Cannot create credential.
Action Make sure the user is valid in the registry. If this is preceeded by other exceptions look into them to narrow down the problem. Contact your service representative if the problem persists.
SECJ0364E: Cannot initialize ltpa object because of the following exception {0}.
Explanation The LTPA server object cannot be initialized.
Action The primary reason this happens is because the ltpa keys cannot be decrypted using the ltpa password. This happens because the password that is used to encrypt the keys is not same one that is saved in the repository.The server may not come up when this problem occurs. If this happens disable security, start the server, enter a new password for LTPA, save it, generate the keys, do another save to save the keys, turn on security, stop and restart the server. Contact your service representative if the problem persists.
SECJ0365E: Cannot create security object during initialization.
Explanation Cannot create the security object from repository. Internal Error.
Action The security.xml might be corrupted or missing. Contact your service representative.
SECJ0366E: Cannot obtain the WAS process type during initialization.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0367W: Warning, LTPA is configured as the authentication mechanism but SSO is disabled. Web applications that use FormBased Login, including the WebSphere web based admin console, may not work correctly.
Explanation SSO is required for FormBased logon to work in Web applications when LTPA is the authentication mechanism.
Action If this is the intended configuration then ignore this warning. If this is not the intended configuration, then the enabled attribute of Single Signon element in the security.xml must be set to the true value.
SECJ0368E: No such LTPA Algorithm. The exception is {0}.
Explanation This is an internal error. A NoSuchAlgorithmException occurred when the LTPAServer tried to sign the token.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0369E: Authentication failed when using LTPA. The exception is {0}.
Explanation Authentication has failed when using LTPA.
Action There could be multiple reasons why this might have occurred. Most of the time this should have preceeded with other exceptions that will indicate what the exact problem is. This might occur if the userName and/or password are incorrect, if the setup of the registry is not valid. If problems persist contact your service representative.
SECJ0370E: Validation of the token failed because the token is null.
Explanation Cannot validate the token since the token is null.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0371W: Validation of the LTPA token failed because the token expired with the following info: {0}.
Explanation Cannot validate the token since the token has expired.
Action Once the token time out is reached, the token will not be validated and the user has to authenticate again. This is normal. Make sure that all the WebSphere nodes and cell(s) are synchronized with respect to time, date and time zone. One can change the token expiration time if required.
SECJ0372E: Validation of the inbound LTPA token failed. The configured LTPA keys are probably not the ones that generated the token signature.
Explanation It's likely the LTPA keys are not the correct ones to verify the signature of the token.
Action This would happen if the keys encrypting the token are not the same as the ones decrypting. If a new set of keys were generated this is an expected error as the tokens signed with old keys will not work anymore. Otherwise, contact your service representative if the problem persists.
SECJ0373E: Cannot create credential for the user {0} due to failed validation of the LTPA token. The exception is {1}.
Explanation Internal Error. Cannot create a credential after the token is validated.
Action This is typically due to an expired token or a token created with different LTPA keys. If the token is expired, you might need to increase the LTPA timeout, if necessary. If the keys are not the same, ensure one set of LTPA keys are used in all cells that interopate, or ensure that a newly added node has synchronized.
SECJ0374E: The accessID in the token contains the wrong type. It should be either user or group. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0375E: Mismatch of realms during token validation.
Explanation The realm in the token does not match the current realm.
Action This error can occur when a token is passed between one cell to another cell and the realm do not match in these cells. If using LDAP make sure that both cells use the same host name and port number.
SECJ0376E: Error importing LTPA keys. The exception is {0}.
Explanation Cannot import LTPA keys.
Action This occurs when the password used to import the keys does not match the password that encrypted the keys. Make sure that the password is the same. If problem persists, contact your service representative.
SECJ0377E: Error exporting LTPA keys. The exception is {0}.
Explanation Cannot export LTPA keys.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0378E: Cannot get SecurityServer in the security MBean.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0379E: Cannot get LTPAServer in the security MBean.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0380W: The keystore or truststore type specified is invalid. Adjusting to use the correct type, however, please correct the SSL configuration for performance reasons.
Explanation The keystore or truststore type specified is invalid.
Action Modify the SSL configuration so that the keystore or truststore type is a valid type. You can check the keystore and truststore types by loading them in WebSphere's IKeyMan tool.
SECJ0381I: Warning, the com.ibm.websphere.java2secman.norethrow property is true. The WebSphere Java 2 Security Manager is not rethrowing AccessControl exceptions. This debug setting should not be used in a production environment. Please see the InfoCenter for Java 2 Security debugging features.
Explanation The com.ibm.websphere.java2secman.norethrow property, when it has a true value, instructs the Java 2 Security Manager to NOT rethrow AccessControl exceptions. This property is intented to aid developers when preparing their application for Java 2 Security. When this property value is true, the Security Manager only reports the AccessControl exception but does not rethrow or propagate the exception up the call stack. This may permit applications to access resources that would they would not otherwise have access to. This property should not be specified in a production environment, only in a debug or application development environment.
Action If this message is unexpected or the application is running in a production environment, remove the com.ibm.ws.java2secman.norethrow property setting unless you understand the consequences.
SECJ0382I: The alias {0} from the server level security has not been updated to the cell.
Explanation Informational.
Action During the server and the cell security object merging, if a same alias name exists in both, the alias will not be copied to the cell configuration. This is as designed. In the normal circumstance this should not happen since the alias names are unique. However, if a removeNode has been performed prior to the addNode, one might see this message as the removeNode will not remove the exisintg aliases. Also, if the alias names in the security.xml file was manually changed this message will show up if the aliases match.
SECJ0383I: Proceeding with merging the server's security configuration with the cell's for this Application Server.
Explanation Informational.
Action This message shows up when the Application Server contains its own security configuration that needs to be merged with cell level configuration.
SECJ0384E: Trust Association Init Error. The Trust Association interceptor implementation {0} initialization failed. The error status/exception is {1}.
Explanation The initialization of this Trust Association implementation failed.
Action Verify that the appropriate Trust Association properties required for the initialization are set up correctly. If you are using your own implementation check your initilization method for any problems. If a single Trust Association implementation is used, this would indicate that the Trust Association will not be in effect. However, if multiple TrustAssociation implementations are used, Trust Association can be in effect if one of the implementations succeeds.
SECJ0385W: Cannot find and load the FIPS approved IBM JSSE or JCE providers. This may be a problem if your environment must use FIPS approved cryptographic algorithms and you are not using your own FIPS approved providers. The error status/exception is {0}.
Explanation Cannot find and load the FIPS approved IBM JSSE or JCE providers. It is a problem in the case when IBM FIPS approved JCE provider is missing because WAS depends on it when requiring to use FIPS approved provider. Missing FIPS approved IBM JSSE provider may not be a problem provided that you have configured ito use your own FIPS approved JSSE provider.
Action Make sure that the missing provider jar, if needed, is in the JDK ext directory.
SECJ0386I: Initializing registry to use Tivoli Access Manager for authentication.
Explanation Authenticaton will be perfomed using Tivoli Access Manager. This requires that WebSphere is configured to use an external Tivoli Access Manager server.
Action None, informational only.
SECJ0387E: Error getting the PolicyConfiguration object for the contextID {0}. The exception is {1}.
Explanation Could not get the JACC provider PolicyConfiguration object. This object is required to propagate the security constraints information to the provider.
Action Make sure that the JACC provider property javax.security.jacc.PolicyConfigurationFactory.provider is set correctly to the PolicyConfigurationFactory implementation class. The preferred way to set this property is to use the JACC configuration properties panel or wsadmin tool. Also make sure that the provider classes are in the classpath of all the servers.
SECJ0388E: Problem getting the PolicyConfiguration inService status. The exception is {1}.
Explanation The policy configuration object status could not be determined. Access will not be granted to this module.
Action The module in question might be in the process of being deleted. If problem persists, contact your service representative.
SECJ0389E: Problem getting the PolicyContext key {0}. The exception is {1}.
Explanation The policy context key cannot be obtained to make the access decision.
Action Make sure that the Policy Context Key in question is registered by the container.
SECJ0390E: Error when caling isCallerInRole for role {0}. The exception is {1}.
Explanation Cannot determine the isCallerInRole because of the exception. Default is to return false. Make sure that the security role-ref information is correct.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0391E: Error when setting the Policy object to the provider''s policy implementation {0}. The exception is {1}.
Explanation The provider's policy implementation cannot be loaded because of the exception.
Action Make sure the JACC provider properties are set correctly and the provider classes are in the classpath. If problem persists, contact your service representative.
SECJ0392E: Error when checking the dataconstraint requirement for the contextID {0}. The exception is {1}.
Explanation Could not determine the dataconstraint requirements for this resource. The request will be denied.
Action Make sure the dataconstraint requirements are correctly configured in the deployment descriptor.
SECJ0393E: Error when checking the isUserInRole requirement for the contextID {0}. The exception is {1}.
Explanation Could not determine the isUserInRole requirements for this resource. The default value false will be returned
Action Make sure the RoleRef information is correctly configured in the deployment descriptor.
SECJ0394E: Principal exists in Subject returned by TAI.getSubject() but it does not implement java.security.Principal.
Explanation The Trust Association Interceptor did not have the correct principal in the Subject. The principal must implement java.security.Principal.
Action Contact the provider of the Trust Association Interceptor to ensure this problem gets resolved.
SECJ0395E: Could not locate the SecurityServer at host/port:{0} to validate the userid and password entered. You may need to specify valid securityServerHost/Port in ${WAS_INSTALL_ROOT}/profiles/profile_name/properties/sas.client.props file.
Explanation A SecurityServer could not be located for login.
Action In some cases it is necessary to specify a valid bootstrap host/port in the com.ibm.CSI.securityServerHost and com.ibm.CSI.securityServerPort properties in the ${WAS_INSTALL_ROOT}/profiles/profile_name/properties/sas.client.props file. See sas.client.props for details.
SECJ0396E: Error updating information to the JACC provider for application {0}. The exception is {1}.
Explanation Cannot provide the security policy information to the JACC provider because of the exception. Without this information the authorization decisions, cannot be made correctly when security is enabled.
Action Make sure the JACC provider is properly configured and can be accessed. After the problem is fixed, either re-install the application or run the propagatePolicyToJACCProvider tool to propagate the policy information to the JACC provider. For more information about this tool, search for propagatePolicyToJaccProvider in the WebSphere Application Server Information Center.
SECJ0397W: Error removing information from the JACC provider for application {0}. The exception is {1}.
Explanation Cannot delete the security policy information from the JACC provider because of the exception. This problem creates redundant information in the JACC provider.
Action Make sure the JACC provider is properly configured and can be accessed. The JACC provider might have tools to remove this information.
SECJ0398E: Error updating information to the JACC provider for application {0}. The exception is {1}.
Explanation Cannot provide the security policy information to the JACC provider because of the exception. Without this information, the authorization decisions cannot be made correctly when security is enabled.
Action Make sure the JACC provider is properly configured and can be accessed. After the problem is fixed, one can either re-install the application or run the propagatePolicyToJACCProvider tool to propagate the policy information to the JACC provider. For more information about this tool, search for propagatePolicyToJaccProvider in the WebSphere Application Server Information Center. If the modification involved removing any modules, you can delete the information in the JACC provider to avoid redundant data.
SECJ0399E: Error updating deployment.xml information with the appContextIDForSecurity for application {0}. The exception is {1}.
Explanation The appContextIDForSecurity atribute is required when using JACC as the authorization.
Action If JACC will not be used for authorization then this should not impact anything. If JACC will be used for authorization, contact your IBM representative if this problem persists.
SECJ0400I: Successfuly updated the application {0} with the appContextIDForSecurity information.
Explanation Information only.
Action Information only.
SECJ0401E: Error getting the WebModuleMetaData or missing metadata for context root {0}. The exception is {1}.
Explanation This is an internal error. Without the meta data, the moduleName and applicationName cannot be obtained for access decisions.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0402E: Error getting the RoleConfiguration object for the contextID {0}. The exception is {1}.
Explanation Could not get the JACC provider RoleConfiguration object. This object is required to propagate the authorizationTable information to the provider.
Action If the authorizationTable information is required by the provider, make sure the JACC provider properties related to the RoleConfigurationFactoryImplClass is set correctly. Also make sure that the implementation classes are in the classpath of all the servers.
SECJ0403E: The PolicyConfiguration object for the contextID {0} is null.
Explanation Could not get the JACC provider PolicyConfiguration object. This object is required to propagate the security constraints information to the provider.
Action Make sure that the JACC provider property javax.security.jacc.PolicyConfigurationFactory.provider is set correctly to the PolicyConfigurationFactory implementation class. The preferred way to set this property is to use the JACC configuration properties panel or wsadmin tool. Also make sure that the provider classes are in the classpath of all the servers.
SECJ0404E: The {0} object is null.
Explanation Could not get the object required for security policy propagation.
Action Make sure that the JACC provider properties are set correctly in the JACC configuration. Also make sure that all the provider classes are in the classpath of all the servers.
SECJ0405E: The {0} object cannot be obtained because of the following error {1}.
Explanation Could not get the object required for security policy propagation.
Action Make sure that the JACC provider properties are set correctly in the JACC configuration. Also make sure that all the provider classes are in the classpath of all the servers.
SECJ0406E: Cannot obtain the earFile for application {0}.
Explanation The earFile is required to get the security policy information for the application. The config repository might be corrupted.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0407E: Cannot obtain the application name for propagating the security constraints to the provider.
Explanation The appname is required to propagate the security policy information to the provider.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ0408E: An exception occurred when removing the security policy information from the provider for application {0} during uninstall. The exception is {1}.
Explanation Because of an exception, the security policy information may not have been removed completely from the provider during the application uninstall.
Action Make sure that the provider is up and running and the JACC configuration is correct. One can use the tools provided by the provider to remove the security policy information manully from the provider's repository.
SECJ0409E: An exception occurred when propagating the security policy information for application {0} to the JACC provider. The exception is {1}.
Explanation Because of an exception, the security policy information may not have been propapated to the provider during the application install.
Action Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0410E: An exception occurred when updating the security policy information for application {0} to the JACC provider. The exception is {1}.
Explanation Because of an exception, the security policy information may not have been updated to the provider during the application update.
Action Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0411E: An exception occurred when getting the authorization provider object from the configuration. The exception is {1}.
Explanation Because of an exception, the security policy information may not have been updated to the provider.
Action Make sure that the provider is up and running and the JACC configuration is correct. Once the problem is fixed, one can also use the wsadmin tool to manually propagate the security policy information to the provider instead of reinstalling the application. See the infocenter documentation for more details on running this tool. If problem persists, please contact your service representative.
SECJ0412E: An Error occured when initializing the initialization class {0} of the JACC provider. The exception or the error code is {1}.
Explanation The initialization implementation of the provider failed with an exception or a non-zero error code.
Action Verify that the JACC provider properties are correctly set and that the initialization classes are in the class path. Check the provider implementation for problems. An error code of zero (0) indicates success.
SECJ0413I: The JACC provider is successfully initialized with the following setup. The policy class name is {0}. The PolicyConfigurationFactory class name is {1}. The optional RoleConfigurationFactory call name is {2}. The optional initialization class name is {3}.
Explanation This message is provided for information purposes only.
Action No user action is required.
SECJ0414W: FIPS is enabled but the IBMJCEFIPS provider is not active in the java.security file. To ensure FIPS algorithms usage for all WAS process types, uncomment the IBMJCEFIPS provider in the java.security file, ahead of the IBMJCE, and renumber the provider list in sequential order.
Explanation When the server is running in FIPS mode the IBMJCEFIPS provider should be in the java.security file.
Action The java.security file needs to be changed to include the IBMJCEFIPS provider in the provider list before the IBMJCE provider.
SECJ0415I: The security policy for application {0} is successfully propagated to the JACC provider.
Explanation This message is provided for information purposes only.
Action No user action is required.
SECJ0416I: The security policy for application {0} is successfully removed from the JACC provider.
Explanation This message is provided for information purposes only.
Action No user action is required.
SECJ0417I: FIPS is enabled.
Explanation The server is running in FIPS mode, using the IBMJCEFIPS provider.
Action No user action is required.
SECJ0418E: The LDAP configuration information is incorrect. {0}
Explanation The most likely cause of this error is an invalidly formed hostname or IP address in LDAP configuration settings.
Action Correct the configured LDAP host or IP address.
SECJ0422I: During addNode from node "{0}" the default node certificate did not exchange it''s signer with the cell default truststore. This may cause a handshake failure when the cell tries to communicate with the node. Manual signer exchange may need to occur.
Explanation It's likely the TrustStore named CellDefaultTrustStore or KeyStore named NodeDefaultKeyStore does not exist in the configuration.
Action The node's signer certificates need to be added to the cell's truststores.
SECJ0423I: During addNode from node "{0}" the default cell certificate did not exchange it''s signer with the node default truststore. This may cause a handshake failure when the node agent starts up. Manual signer exchange may need to occur.
Explanation It's likely the TrustStore named NodeDefaultTrustStore or KeyStore named CellDefaultKeyStore does not exist in the configuration.
Action The cell's signer certificates need to be added to the node's truststores.
SECJ0424E: During addNode from node "{0}" the default keystore and truststore were not already created. An attempt to create them on the DMGR failed with exception: {1}.
Explanation The creation of keystore and truststore with self-signed certificate failed.
Action The node agent did not have certificates created when it was federated into the cell. The attempt to create them during addNode failed.
SECJ4000E: JAAS Login Exception occurred at {0}.
Explanation JAAS Login exception occurred while refreshing the credential.
Action Please confirm user id, password and realm information are correct. If you still see the problem, contact your service representative with exception stack trace information present in the error log.
SECJ4001E: Login failed for {0}/{1} {2}
Explanation Authentication can fail for many reasons. The user or password may not have been entered correctly, misspelled for instance. The user account may not exist, may have expired, or be disabled. The password may have expired or require a change at first logon. If WebSphere security is configured to use LDAP as the user registry, the WebSphere security LDAP user and group search filter configuration may not match what the LDAP directory expects.
Action Confirm if the user information(realm name, user name, password) is valid. Try authenticating the user directly to the configured user registry outside of WebSphere authentication to verify the user and password are valid in the user registry. The WebSphere InfoCenter documents additional user account requirements for certain user registries.
SECJ4002E: No CORBA Credentials for {0}/{1}
Explanation Authentication failure occurred while invoking login() of realm/user since there is no CORBA credential.
Action Confirm if the user information(realm name, user name password) is valid.
SECJ4003E: Credential token login is not valid for LocalOS
Explanation JAAS Login failure occurred while invoking login() with token for LocalOS.
Action LocalOS does not support login with token. Please make sure the application program is valid.
SECJ4004E: Login failed for credential token {0}
Explanation JAAS Login failure occurred while invoking login() with token.
Action Please check the user authenticate data is correct. Enabling security debug trace will provide the details.(com.ibm.ws.security.auth.* )
SECJ4005E: No CORBA Credentials for credential token
Explanation JAAS Login returned null credential while invoking login() with token. There is no CORBA Credential.
Action login returned null Credential. Please check the user application how it authenticate. Enabling security debug trace will provide the details.(com.ibm.ws.security.auth.* )
SECJ4006E: Invalid Credential Type {0}
Explanation Getting the JAAS subject from CORBA credential failed with exception.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4007E: Not suppose to construct WSLoginHelperImpl object
Explanation WSLoginHelperImpl object instance should not be constructed.
Action Check the user application. WSLoginHelperImpl should not be directly constructed.
SECJ4008E: Missing some of the authentication data
Explanation Some of the authentication data is missing.
Action Check the next message. It identifies what is missing.
SECJ4009E: Either user name, realm or password data is missing.
Explanation User name, realm name or password is missing.
Action Confirm the necessary authentication data is passed. Enabling security debug trace for component com.ibm.ws.security.auth.* may yield additional information.
SECJ4010E: Credential Token is null or empty array
Explanation Credential token is missing.
Action Confirm the necessary authentication data is passed.
SECJ4011E: com.ibm.ejs.oa.EJSORB.getORBInstance() returns null
Explanation com.ibm.ejs.oa.EJSORB.getORBInstance() returns null
Action Please check if ORB is initialized correctly in user application.
SECJ4012E: Error getting SecurityCurrent from the ORB {0}
Explanation Getting security current caused an exception.
Action Please check if ORB is initialized correctly in user application.
SECJ4013E: An unexpected IOexception occurred in Login Module {0} CallbackHandler. The exception is {1}
Explanation Exception occurred while processing callbacks
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4014E: Login Module {0} detected unsupported {1} callback in CallbackHandler {2}
Explanation Unsupported Exception occurred while processing callbacks
Action Check the application. Contact your service representative with exception stack trace information present in the error log if the problem persists.
SECJ4015E: An unexpected exception occurred during the JAAS login commit action in Login Module {0}. The exception is {1}.
Explanation Exception occurred while committing LoginModule
Action Check the application. Contact your service representative with exception stack trace information present in the error log if the problem persists.
SECJ4016E: An unexpected exception occurred in Login Module {0} when removing principal {1} during cleanup. The exception is {2}
Explanation Exception occurred while removing the principal.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4017E: An unexpected exception occurred in Login Module {0} when removing WSCredential during cleanup {1}
Explanation Exception occurred while removing the credential.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4018E: Removing CORBA Credential during cleanup {0}
Explanation Exception occurred while removing CORBA credential.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4019E: Not supposed to construct Util object
Explanation Util object instance should not be constructed.
Action Check the user application. Util should not be directly constructed.
SECJ4020E: CORBA: Invalid Attribute Type: {0} {1}
Explanation CORBA credential has invalid attribute.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4021E: CORBA: Duplicate Attribute Type: {0} {1}
Explanation CORBA credential has duplicate attributes.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4022E: CORBA: Not suppose to construct CredentialsHelper object
Explanation CredentialsHelper object instance should not be constructed.
Action Check the user application. CredentialsHelper should not be directly constructed.
SECJ4023E: Failed to create a Configuration instance.
Explanation Failed to create a configuration instance
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4024W: {0} :Warning: getAppConfigurationEntry() was called with no configuration name.
Explanation getAppConfigurationEntry() was called with null string.
Action Check the parameter if it is called from user application. If not, Contact your service representative.
SECJ4025E: unable to get system input stream {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4026W: WSDefaultPrincipalMapping() should not be invoked.
Explanation WSDefaultPrincipalMapping() should not be invoked.
Action This is warning. Check the user application. WSDefaultPrincipalMappingshould not be directly constructed.
SECJ4027W: {0} does not exist, use {1} wsj2cdpm.properties
Explanation Specified file did not exist. Use the default file.
Action This is warning. Check the specified file name.
SECJ4028E: Unexpected Exception caught in new URL {0} : Exception is {1}
Explanation Unexpected exception occurred while creating a new URL.
Action Check the specified URL. Contact your service representative with exception stack trace information present in the error log.
SECJ4029E: Unexpected Exception caught in openStream URL {0} : Exception is {1}
Explanation Unexpected Exception occurred while opening an URL.
Action Check the specified URL. Contact your service representative with exception stack trace information present in the error log.
SECJ4030E: Unrecognizable Callback index = {0} {1}
Explanation Unrecognizable Callback is passed.
Action Contact your service representative with information present in the error log.
SECJ4031E: Unexpected IOException caught {0}
Explanation Unexpected IOException was caught while processing callbacks.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4032E: Method {0} detected missing or malformed data when trying to perform conversion. The data item name is {1} and value is {2}.
Explanation Internal problem related to malformed or corrupt data storage.
Action Contact your service representative with exception stack trace information present in the error log.
SECJ4033E: The LoginContext does not contain a Subject after authenticating user {0} with LoginModule alias {1}.
Explanation The LoginModule did not create a Subject. There is a problem with the LoginModule
Action This problem could be due to a configuration error in security.xml or an internal error.
SECJ4034I: Token Login failed. If the failure is due to an expiring token, verify the system date and time of the WebSphere nodes are synchronized or consider increasing the token timeout value. Authentication mechanism {0} and exception is {1}
Explanation Token Authentication failure may be caused by an expired token, invalid token or a date or time synchronization problem between WebSphere nodes. Web browsers often cache WebSphere SSO cookies which contain the token to validate. These tokens do expire.
Action Token validation failures are not always unexpected given that tokens can expire. May consider increasing timeout value or verifying that the system date and time between WebSphere nodes is synchronized.
SECJ4035E: {0} :ERROR: Could not get System property: {1}
Explanation Failed to get the specified property.
Action Please check if you defined the specified property correctly.
SECJ4036E: {0} : Error: An exception occurred when trying to reflect on or invoke convertMapToString(). The exception is {1}
Explanation Exception occurred trying to reflect on or invoke convertMapToString().
Action Please investigate the exception. Check classpath.
SECJ4037E: {0} :ERROR: Could not open URL: {1}. The exception is {2}
Explanation MalformedURLException occurred trying to connect the specified URL.
Action Please investigate the exception. Check the specified URL.
SECJ4038E: {0} :ERROR: Could not create URL: {1}. The exception is {2}
Explanation IOException occurred trying to connect the specified URL.
Action Please investigate the exception. Check the specified URL.
SECJ4039E: {0} :ERROR: A file parser exception occurred with file : {1}. The exception is {2}
Explanation IOException occurred trying to connect the specified URL.
Action Please investigate the exception. Check the specified URL.
SECJ4040W: {0} :Warning: update() method passed either a null or empty string.
Explanation null or empty string was passed to update() method.
Action This is a warning.
SECJ4041E: {0} :ERROR: Could not create or open StringReader: {1}. The exception is {2}.
Explanation Could not create or open the specified StringReader.
Action Please investigate the exception.
SECJ4042E: {0} :ERROR: A file parser exception occurred with file : {1}. The exception is {2}
Explanation IOException occurred trying to connect the specified stringreader.
Action Please investigate the exception. Check the specified string.
SECJ4043W: {0} :Warning: An unexpected IOException occurred when closing a stream.
Explanation Unexpected IOException occurred trying to close a stream.
Action This is a warning.
SECJ4044E: WCCM jaas objects is not yet load.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4045E: {0} : Error: An exception occurred when trying to reflect on or invoke convertMapToString(). The exception is {1}
Explanation Exception occurred trying to reflect on or invoke convertMapToString().
Action Please investigate the exception. Check classpath.
SECJ4046E: Duplicate login config name {0}. Will over write.
Explanation Duplicate login config name was specified in the configuration data.
Action Please check the configuration data.
SECJ4047E: IOException occurred during parsing jaas application configuration. The exception is {0}
Explanation IOException occurred during parsing jaas application configuration.
Action Please check the configuration file. Please investigate the exception.
SECJ4048E: ParserException occurred during parsing jaas application configuration. The exception is {0}
Explanation ParserException occurred during parsing jaas application configuration.
Action Please investigate the exception. It has the information of syntax error in the configuration file.
SECJ4049E: Error creating credential from registry object. The exception is {0}.
Explanation Unexpected exception occurred while creating and initializing the user registry.
Action Check the application and the registry set up. Contact your service representative if the problem persist.
SECJ4050E: An unexpected exception is caught: {0}.
Explanation Unexpected exception occurred while restoring the credential.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4051E: PrivilegedActionException is caught while serialized Subject is being restored. The exception is {0}.
Explanation PrivilegedActionException occurred while restoring the credential. This exception is a wrapper of the exception thrown in doPrivileged block.
Action Please investigate the real source of the exception. Contact your service representative if the problem persist.
SECJ4052E: InvalidCredentialType exception is caught while serialized Subject is being restored. The exception is {0}.
Explanation InvalidCredentialType exception occurred while restoring the credential.
Action Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4053E: InvalidCredential exception is caught while serialized Subject is being restored. The exception is {0}.
Explanation InvalidCredentialType exception occurred while restoring the credential.
Action Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4054E: InvalidCredentialType exception is caught while serialized Subject is being restored. The exception is {0}.
Explanation InvalidCredentialType exception occurred while restoring the credential.
Action Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4055E: InvalidCredential exception is caught while serialized Subject is being restored. The exception is {0}.
Explanation InvalidCredentialType exception occurred while restoring the credential.
Action Please investigate the SAS problem. Contact your service representative if the problem persist.
SECJ4056E: Error getting initial context. The exception is {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ4057I: WSMappingCallbackHandlerFactory implementation class {0} not defined.
Explanation WSMappingCallbackHandlerFactory implementation class may be defined in security.xml to customize Mapping CallbackHandler. This is not an error condition. When the implementation class is not defined, a default WebSphere implementation will be used.
Action No action is required unless one wants to override the WebSphere default WSMappingCallbackHandlerFactory implementation.
SECJ4058E: WSDefaultPrincipalMapping Initialization failed. The exception is {0}.
Explanation WSDefaultPrincipalMapping initialization failed. The JCA container managed principal/credential mapping most likely will not work properly.
Action Examine the cause of the exception and correct the problem. the most likely reason is the WSMappingCallbackHandlerFactory implementation class was not configured properly.
SECJ4059W: WSDefaultPrincipalMapping Initialization failed. Fall back to use WSMappingCallbackHandler.
Explanation WSDefaultPrincipalMapping initialization failed. The JCA container managed principal/credential mapping most likely will not work properly.
Action Examine the cause of the exception and correct the problem. the most likely reason is the WSMappingCallbackHandlerFactory implementation class was not configured properly.
SECJ4060W: Cannot find parameter {0} that may be needed by Mapping LoginModules.
Explanation Either the custom properties HashMap or the authentication data alias was not defined.
Action This may or may not be a problem depending on the particilau mapping LoginModules.
SECJ4061W: Exception {0} was thrown during mapping.
Explanation An exception was throan by the WebSphere default principal/credential mapping function.
Action This is most likely caused by incorrect authentcaiton data configuration.
SECJ4062W: Cannot find the credential information.
Explanation WebSphere default principal/credential mapping function could not find the specified credential information.
Action This is most likely caused by incorrect authentication data configuration.
SECJ4063E: Exception {0} caught in processing callback {1}
Explanation Unexpected problem occured when processing a WAS V5 mapping callback type.
Action Contact your service representative with information present in the error log.
SECJ4064E: Trust state information missing in shared state, unable to perform identity assertion.
Explanation A Custom Login module must be provided and configured prior to this login module in the JAAS Login Configuration and should have provided trust information in shared state.
Action Please check a Custom Login Module is provided and configured prior to this login module in the JAAS Login Configuration and make sure the shared state information is set correctly based on the requirement.
SECJ4065W: Principal and X509Certificate provided in the trust information, using the principal.
Explanation Both a principal and X509Certificate are provided in the trust information, the principal has priority and will be used for the login.
Action If login with the X509Certificate is desired then the principal should not be passed in the trust information.
SECJ4066E: Could not find identity to perform identity assertion.
Explanation A Custom Login module must provide an identity to perform identity assertion.
Action Please check a Custom Login module to make sure an idenity is provided to the perform identity assertion.
SECJ5000E: The following exception occurred while creating the attribute propagation token: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5001E: The following exception occurred while creating the attribute propagation token holder list from the authorization token: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5002W: An error occurred while serializing the custom object {0} from the current Subject. This does not cause the request to fail but this custom object will not get propagated.
Explanation The object mentioned above probably does not implement the java.io.Serializable interface.
Action Ensure the object implements the java.io.Serializable interface to ensure it gets propagated downstream.
SECJ5003W: An error occurred while de-serializing a custom object from the inbound authorization token. This does not cause the request to fail but this custom object will not get restored in the inbound Subject.
Explanation The object failed to de-serialize at the target server. The likely cause is the implementation class is not present on the target server or the Java class version between the sending server and target server is different.
Action Ensure the correct java class exists at the target server.
SECJ5004W: Trying to add propagation token name {0} and version {1} that already exists on the thread. The existing PropagationToken is returned and will not be overwritten.
Explanation Cannot overwrite an existing PropagationToken. The existing one is returned, so use it to set new attributes given the proper permission.
Action Check the addPropagationToken SPI for the value returned. A null value indicates this is the first time the token is added. A non-null value indicates you are setting the token again which is not allowed. Use the returned value to add new attributes.
SECJ5005E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.uniqueId property value.
Explanation The com.ibm.wsspi.security.cred.uniqueId property has not been found during a properties login attempt.
Action Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.uniqueId.
SECJ5006E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.securityName property value.
Explanation The com.ibm.wsspi.security.cred.securityName property has not been found during a properties login attempt.
Action Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.securityName.
SECJ5007E: Cannot create WSCredential without a valid com.ibm.wsspi.security.cred.longSecurityName property value.
Explanation The com.ibm.wsspi.security.cred.longSecurityName property has not been found during a properties login attempt.
Action Ensure that the java.util.Hashtable used for a properties login contains a valid property value for com.ibm.wsspi.security.cred.longSecurityName.
SECJ5008W: The realm specified in com.ibm.wsspi.security.cred.realm ({0}) does not match the current realm ({1}). This could cause problems when trying to make a downstream request.
Explanation The realm specified does not match the current security realm of this server. This could cause problems when trying to go downstream to another server on the same current realm.
Action If a different realm is desired, set the supportedTargetRealms field to include the new realm you are specifying in order to go outbound to servers in the current realm.
SECJ5009E: Could not create a WSCredential given the information provided during a propagation login. The following exception occurred: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5010E: Could not create default AuthenticationToken during propagation login. The following exception occurred: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5011E: Could not create default AuthorizationToken during propagation login. The following exception occurred: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5012E: Could not create default SingleSignonToken during propagation login. The following exception occurred: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5013E: Could not create default SingleSignonToken during propagation login. The following exception occurred: {0}
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ5014E: Could not find the factory class {0} specified for this token. The exception is {1}.
Explanation The LTPA TokenFactory implementation is likely not present in the classpath.
Action Ensure the LTPA TokenFactory implementation is located in the WebSphere classpath. Typically these implementations are put in the ${WAS_INSTALL_ROOT}/classes directory.
SECJ5015E: The LTPA TokenFactory {0} returned is null.
Explanation The LTPA TokenFactory implementation is likely not present in the classpath or it cannot be initialized.
Action Ensure the LTPA TokenFactory implementation is located in the WebSphere classpath. Typically these implementations are put in the ${WAS_INSTALL_ROOT}/classes directory.
SECJ5016E: The LTPA TokenFactory {0} could not create a new LTPA token. The exception is {1}.
Explanation The LTPA TokenFactory implementation had a problem in the createToken method or the keys used to create a token were not present.
Action Ensure the LPTA keys are configured properly and check the createToken implementation on the TokenFactory interface.
SECJ6000I: Security Auditing is enabled.
Explanation This audit message indicates that the WebSphere Application Server Security Auditing service is enabled.
Action No action is required is this is the desired setting.
SECJ6001I: Security Auditing is required.
Explanation This audit message indicates that security auditing records are required.
Action No action is required if this is the desired setting. Note that the intention of this auditing policy is not to commit a business transaction unless the required security auditing records can be saved.
SECJ6002E: Failed to load {0} name {1} and class name {2}.
Explanation Failed to load the specified class which wsas defined in the global security custom properties.
Action Verify that the class name, class path, and class file are configured properly.
SECJ6003I: Successfully loaded {0} name {1} and class name {2}.
Explanation Indicate that the specified provider class was loaded.
Action No action is required.
SECJ6004I: Security Auditing is disabled.
Explanation This audit message indicates that the WebSphere Application Server Security Auditing service is disabled.
Action No action is required if this is the desired setting.
SECJ6005E: Invalid configuration {0} = name {1} and class name {2}.
Explanation The provider configuration in global security custom properties was incorrect.
Action Check the specified properties and in particular the first missing parameter in the error message.
SECJ6006E: Security auditing is REQUIRED but {0} was not defined.
Explanation At least one AuditEventFactory and an AuditServiceProvider must be defined when the security auditing policy is set to REQUIRED.
Action Verify that the two properties com.ibm.websphere.security.audit.auditEventFactory and com.ibm.wsspi.security.audit.auditServiceProvider are defined proerly in the global security custom properties.
SECJ6007E: Undefined {0} = {1}.
Explanation The specified properties was not defined properly in the global security customer properties.
Action Verified that the specified properties is defined properly in the global security custom properties.
SECJ6008E: Exception caught in AuditService initialization, Exception = {0}.
Explanation Runtime exception occured most likely due to incorrect class definition, incorrect class path, or missing class files.
Action Examine the exception for the cause of the problem.
SECJ6009E: AuditEventFactory number {0} getActive() malfunction, Provider Exception = {1}.
Explanation The getActive method in the spcified AuditEventFactory implementation failed.
Action Examine the exception for the cause of the problem. If the problem was not related to incorrect configuration, then you need to consult with the vendor of the AuditEventFactory implementation.
SECJ6010W: Extra AuditServiceProvider definition detected and discarded: {0}.
Explanation Extra AuditServiceProvider was defined and is discarded.
Action The com.ibm.wsspi.security.audit.auditServiceProvider properties contains extra information than necessary. Any information following the valid AuditServiceProvider definition is discarded.
SECJ6011W: Custom property {0} was not defined.
Explanation The specified audit service provider was not defined in the global security custom properties.
Action Define the specified properties if security auditing service is required in your business environment.
SECJ6012I: Security Auditing is optional.
Explanation This audit message indicates that security auditing records are optional.
Action No action is required if this is the desired setting. Note that the intention of this auditing policy is not to suspend a business transaction when security auditing records cannot be saved.
SECJ6013E: The configured J2EE AuditEventFactory implementation did not implement the J2EEAuditEventFactory interface.
Explanation As a convention, an AuditEventFactory implementation that is configured under the J2EE name must implement the J2EEAuditEventFactory interface.
Action Examine the com.ibm.websphere.security.audit.AuditEventFactory properties in global security custom properties.
SECJ6014I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Method Name = {12}, Provider Name = {13}, Provider Successful = {14}, Exception = {15}.
Explanation This message is intended to be used by the defaultAuditEventFactoryImpl sendAccessAuditEvent method only.
Action No action required.
SECJ6015I: AuditEvent = {0}, AuditEventFactory Name = {1}.
Explanation This message is intended to be used by the defaultAuditServiceProviderImpl sendEvent method only.
Action No action required.
SECJ6016I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Realm = {12}, Authn Mechanism = {13}, Authn Method = {14}, User Name = {15}, Provider Name = {16}, Provider Successful = {17}, Subject = {18}, Caller List = {19}, Remote Addr = {20}, Remote Host = {21}, Remote Port = {22}, Exception = {23}.
Explanation This message is intended to be used by the defaultAuditEventFactoryImpl sendAuthnAuditEvent method only.
Action No action required.
SECJ6017E: Unexpected Exception {0}.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ6018I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Resource Name = {10}, Resource Type = {11}, Method Name = {12}, Provider Name = {13}, Provider Successful = {14}, Subject = {15}, Exception = {16}.
Explanation This message is intended to be used by the defaultAuditEventFactoryImpl sendAuthzAuditEvent method only.
Action No action required.
SECJ6019I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Provider Name = {9}, Provider Successful = {10}, Original Realm = {11}, Original User Name = {12}, Mapped Realm = {13}, Mapped User Name = {14}, Exception = {15}.
Explanation This message is intended to be used by the defaultAuditEventFactoryImpl sendMappingAuditEvent method only.
Action No action required.
SECJ6020I: AuditEvent = {0} AuditEventFactory Name = {1}.
Explanation This message is intended to be used by the defaultAuditServiceProviderImpl sendEvent method only.
Action No action required.
SECJ6021I: AuditEventType = {0}, AuditOutcome = {1}, AuditOutcomeReason = {2}, unique Event ID = {3}, Cell Name = {4}, Node Name = {5}, Server Name = {6}, Component Name = {7}, App Name = {8}, Session ID = {9}, Realm = {10}, User Name = {11}, Provider Name = {12}, Provider Successful = {13}, Subject = {14}, Caller List = {15}, Remote Addr = {16}, Remote Host = {17}, Remote Port = {18}, Exception = {19}.
Explanation This message is intended to be used by the defaultAuditEventFactoryImpl sendLogoutAuditEvent method only.
Action No action required.
SECJ6022E: AuditServiceProvider malfunction when security auditing is required, Provider Exception = {0}.
Explanation The configured AuditServiceProvider did not execute the method in a reasonable time period while security auditing function is required.
Action Examine the exception for the cause of the problem. Typically the business transactions should have been aborted because no security auditing record can be logged.
SECJ6100I: Invalid URI.
Explanation A web request is rejected because it contains an invalid URI name.
Action Incorrect URI may be a simple user error or an indication of potential threat where malicious users explore the weakness of web applications. You may perform a correlation analysis of security auditing events.
SECJ6101I: Web access security context not found.
Explanation A web request is rejected because no web access security context is configured.
Action The cause may be a simple user error or an indication of potential threat where malicious users explore the weakness of web applications. You may perform a correlation analysis of security auditing events.
SECJ6102I: Access to a web resource is allowed because no access control is required.
Explanation Access to a web resource does not require access control because there is no servlet mapping.
Action The URI is not protected. No action is required is this is the desired configuration. Otherwise, proper security constraint should be added to the web application.
SECJ6103I: Access to a web resource is allowed because no access control is required.
Explanation Access to a web resource does not require access control because there is no security constraint.
Action The URI is not protected. No action is required is this is the desired configuration. Otherwise, proper security constraint should be added to the web application.
SECJ6104I: Access to a web resource is allowed because the URI is either login page, error page or form login page.
Explanation Access to login page, error page, and form login page does not require access control.
Action The URI is not protected. No action is required.
SECJ6105I: Access to a web resource is denied because no security role is defined in the auth constraint.
Explanation According to Servlet V2.4 Spec, access to a web resource should be precluded if there is an auth constraint in the security constraint but there is no security role defined in the auth constraint.
Action Modify the security constraint if the current behavior does not fit your needs.
SECJ6106I: The request is redirected to {0} because the requested resource must be accessed via HTTPS.
Explanation The requested resource has a Data Constraint and requires SSL connection to it.
Action No action is required.
SECJ6107I: The request is denied because the {0} login method was not supported.
Explanation WebSphee Application Server does not support the configured login method.
Action Modify the deployment descriptor to choose a supported login method. You may explore the Trust Association Interface and the UserRegistry interface and plug in your custom implementation to support the DIGEST login method.
SECJ6108I: Access to a web resource is allowed because there is no auth constraint.
Explanation According to Servlet V2.4 Spec, access to a web resource should be permitted if there is no auth constraint in the security constraint.
Action Modify the security constraint if the current behavior does not fit your needs.
SECJ6109I: Access to a web resource is allowed because either the EVERYONE Special Subject was mapped to at least one of the required security role or if there is no auth constraint.
Explanation Access to a web resource is granted to any user without requiring authentication when the Everyone Special Subject was mapped to at least one of the required security role.
Action Modify the security constraint if the current behavior does not fit your needs.
SECJ6110I: SSO token {0} was validated successfully.
Explanation Authentication was successful.
Action No action is required.
SECJ6111I: SSO token {0} failed validation with an Exception.
Explanation Authentication failed due to internal failure.
Action Please report this problem to IBM.
SECJ6112I: SSO token {0} is expired and failed validation.
Explanation Authentication failed because the SSO token has expired.
Action No action is required.
SECJ6113I: SSO token {0} is invalid and failed validation.
Explanation Authentication failed because the SSO token was invalid.
Action No action is required.
SECJ6115I: Authentication successful with Trust Accosication Interceptor.
Explanation The authentication via the specified Trust Association Interceptor was successful.
Action No action is required.
SECJ6116I: Authentication failed becasue Trust Accosication Interceptor user name cannot be mapped to WebSphere Application Server user.
Explanation The authentication via the specified Trust Association Interceptor failed because the asserted user name cannot be mapped to a valid WebSphere Application Server user.
Action If this problem persists, the mapping problem is likely to be caused either by incorrect TAI configuration or by TAI implementation.
SECJ6117I: Authentication failed due to missing or incorrect user name and/or password. Redirect to {0}.
Explanation Form based Authentication failed due to missing or incorrect user id and/or password. Typically a web user will be redirect to a login page to retry.
Action No action is required.
SECJ6118I: Authentication failed becasue Trust the client certificate cannot be mapped to WebSphere Application Server user.
Explanation The authentication based on the X509 client certificate failed because the certificate user name cannot be mapped to a valid WebSphere Application Server user.
Action No action is required.
SECJ6119I: Authentication failed becasue the client certicate user name cannot be mapped to WebSphere Application Server user.
Explanation The authentication failed because the client certificate user name cannot be mapped to a valid WebSphere Application Server user.
Action The user may not be defined in the registry. Otherwise, verify the registry and mapping configuration.
SECJ6120I: Authentication failed becasue the user registry was not defined.
Explanation The authentication failed because there is no active user registry defined to map the client certificate user name to a valid WebSphere Application Server user.
Action Verify the registry and mapping configuration.
SECJ6121I: Client certificate Authentication failed due to internal error.
Explanation The authentication failed due to an unexpected runtime exception.
Action Please report the problem to IBM.
SECJ6122I: Client certificate Authentication failed due to internal error. Will try Basec authentication which is permitted by the web application configuration.
Explanation The authentication failed due to an unexpected runtime exception. The web application configuration allows authentication using user id and password. Will try to see if there is user id and password information in the HTTP header.
Action No action is required.
SECJ6123I: HTTP authorization header is missing. Send out 401 challenge.
Explanation The authentication failed because there is no authorization header in the HTTP header. WebSphere Application Server will send a 401 challenge to the web client.
Action No action is required.
SECJ6124I: Basic authentication data is missing. Send out 401 challenge.
Explanation The authentication failed because there is no user id and password information in the HTTP header. WebSphere Application Server will send a 401 challenge to the web client.
Action No action is required.
SECJ6125I: Basic authentication failed due to incorrect user id and/or password Will send a 401 challenge.
Explanation The authentication failed because there the user id and password information in the HTTP header was incorrect. WebSphere Application Server will send a 401 challenge to the web client.
Action No action is required.
SECJ6126I: Basic authentication was successful.
Explanation Authentication using the user id and password in the HTTP header was successful.
Action No action is required.
SECJ6127I: Basic authentication failed due to internal error.
Explanation Basic Authentication failed and a runtime exception was caught.
Action Please report this problem to IBM.
SECJ6128I: Authentication failed due to internal error.
Explanation Authentication failed and a runtime exception was caught.
Action Please report this problem to IBM.
SECJ6129I: Access is allowed because security is disabled.
Explanation Access to the resource is allowed because WebSphere Application Server global security eas not enabled.
Action No action required if this is the configured behavior..
SECJ6130I: Access is allowed.
Explanation Access to the resource is allowed because the user and/or the groups the user is in have the required security role.
Action No action required if this is the desired behavior.
SECJ6131I: Access is denied.
Explanation Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
Action No action required if this is the desired behavior.
SECJ6132I: Access is denied, Reason: {0}.
Explanation Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
Action No action required if this is the desired behavior.
SECJ6133I: Parsing client certificate failed.
Explanation Access to the resource is denied because the user and/or the groups the user is in does not have any of the required security role.
Action No action required.
SECJ6134I: Session does not exist on server.
Explanation The client context id (= 0) in a MessageInContext message is invalid.
Action No action required.
SECJ6135I: Session does not exist on server.
Explanation The client context id is inconsistent with session state.
Action This problem should be analyzed to determine whether it was due to program or operational error or due to spoofing attempt.
SECJ6136I: Session or token expired.
Explanation The security token in the security context has expired.
Action Typically token has a finite expiration time and this condition may be normal.
SECJ6137I: ASSOC_ACCEPT message is illegal at the target. The client may not be using correct configuration.
Explanation The message type ASSOC_ACCEPT should not be received at the target server. This might occur due to an exception that occurred on the client which caused a mixup.
Action Check the client configuration to ensure there's nothing out of the ordinary that might be causing an exception to occur.
SECJ6138I: Security context setup successfully.
Explanation The client security context was re-established successfully using the client session context identifier. The message type ASSOC_ACCEPT should not be received at the target server.
Action No action is required.
SECJ6139I: The authorization token is invalid.
Explanation Parsing the client authorization token failed.
Action Need to determine if this is caused by programming error.
SECJ6140I: Invalid GSS security token format.
Explanation GSS security context token contains invalid OID number or authentication mechanism.
Action No action required.
SECJ6141I: Authentication failed due to internal error.
Explanation Authentication failed due to internal error.
Action No action required.
SECJ6142I: Cannot obtain the identity of the ITTPrincipalName.
Explanation The Identity token is invalid.
Action No action is required.
SECJ6143I: Authentication failed.
Explanation Could not validate Client Authentication Token and/or Client Certificates during Identity Assertion.
Action No action is required.
SECJ6144I: Authentication failed.
Explanation Failed to convert the client certificate.
Action No action is required.
SECJ6145I: Authenticate to unauthenticated credentials.
Explanation Setting the credentials to unauthenticated because there is no valid identity token.
Action No action is required.
SECJ6146I: Message type was not supported.
Explanation Message type is not EstablishContext and stateful=false.
Action No action is required.
SECJ6147I: Authentication failed.
Explanation Examine the exception for reason of failure.
Action No action is required.
SECJ6148I: Authentication succeeded.
Explanation The authentication was successful.
Action No action is required.
SECJ6149I: Principal/Credential mapping succeeded.
Explanation The J2EE Connection principal/credential mapping was successful.
Action No action is required.
SECJ6150I: The user has the required roles {0}.
Explanation The user has been granted to one or more of the required roles.
Action No action is required.
SECJ6151I: The user does not have the required roles {0}.
Explanation The user has not been granted any one of the required roles.
Action No action is required.
SECJ6152I: Form Logout.
Explanation The HTTP session is cleaned up after form logout.
Action No action is required.
SECJ6153I: Redirect to form based login page {0} to prompt for web client authentication data.
Explanation The web resource requires Form based authentication. Typically a web user will be redirected to a login page to enter user id and password.
Action No action is required.
SECJ6154I: Form based authentication was successful.
Explanation Form based authentication was successful.
Action No action is required.
SECJ6205W: The current Java 2 Security policy reported a potential violation of a Java 2 Security Permission. Please refer to the InfoCenter for further information.{0}Permission:{1}Code:{2}Code Base Location:{3}
Explanation The Java Security Manager checkPermission() threw a SecurityException on the subject Permission. A caller on the call stack does not have the required permission. This may not be a problem if the caller properly handles this exception.
Action Verify that the attempted operation is permitted by examining all Java 2 security policy files and application code. Additional permissions may be required, an AccessController.doPrivileged call may be needed in some code on the call stack, or the Security Manager has properly prevented access to a resource that a caller does not have permission to access.
SECJ6206W: The current Java 2 Security policy report a potential violation of a Java 2 Security Permission. Stack Trace:{0}
Explanation The Java Security Manager checkPermission() threw a SecurityException. A caller on the call stack does not have the required permission.
Action Verify that the attempted operation is permitted by examining all Java 2 security files and application code. Additional permissions may be required.
SECJ6207I: Authorized credential management is enabled.
Explanation Applications running in this server are considered "trusted". When applications are trusted, the security infrastructure will allow the creation of MVS credentials without a password, passticket, or certificate as an authenticator. Trusted applications must be enabled in order to use the LTPA authentication mechanism, identity assertion, or a Trust Association Interceptor with a "Local OS" user registry on z/OS. Trusted applications must also be enabled to use SAF authorization.
Action No user action is required.
SECJ6208I: Authorized credential management is disabled.
Explanation Applications running in this server are not considered "trusted". Since applications are not trusted, the security infrastructure has disallowed the creation of MVS credentials without a password, passticket, or certificate as an authenticator. Trusted applications must be enabled in order to use the LTPA authentication mechanism, identity assertion, or a Trust Association Interceptor with a "Local OS" user registry on z/OS. Trusted applications must also be enabled to use SAF authorization.
Action No user action is required.
SECJ6209I: Application thread identity synchronization is enabled.
Explanation The server has been configured to perform J2EE and operating system thread identity synchronization for applications that request it.
Action No user action is required.
SECJ6210W: Application thread identity synchronization has been disabled by the z/OS security product.
Explanation The server has been configured to perform J2EE and operating system thread identity synchronization for applications that request it but the security product has not authorized the use of this support.
Action Contact your security product administrator to request authorization to use thread identity synchronization.
SECJ6211I: Connection management thread identity synchronization is enabled.
Explanation The server has been configured to perform J2EE and operating system thread identity synchronization for connectors that are able to exploit it.
Action No user action is required.
SECJ6212W: Connection management thread identity synchronization has been disabled by the z/OS security product.
Explanation The server has been configured to perform J2EE and operating system thread identity synchronization for connectors that are able to exploit it but the security product has not authorized the use of this support.
Action Contact your security product administrator to request authorization to use thread identity synchronization.
SECJ6213I: Thread identity synchronization will not subject to SURROGAT authorization.
Explanation WebSphere will not perform SURROGAT class authorization checks prior to creating native security environments.
Action No user action is required.
SECJ6214I: SAF authorization is enabled.
Explanation WebSphere for z/OS has been configured to use the z/OS security product for authorization. The authorization policies for WebSphere must be defined in the EJBROLE class of the z/OS security product. Authorization policies embedded in the applications will be ignored.
Action No user action is required.
SECJ6215E: The SAF credential token {0} has been finalized but the underlying native credential has not been destroyed.
Explanation This exception is unexpected. The cause is not immediately known.
Action If the problem persists, see problem determination information on the WebSphere Application Server Support page at http://www.ibm.com/software/webservers/appserv/was/support/.
SECJ6216I: SAF delegation is enabled.
Explanation The APPLDATA associated with the profile representing the J2EE role will be used to determine the id of a user that is in the role. An invocation Subject will be built with a credential for that user.
Action No user action is required.
SECJ6217E: Unable to create a SAF delegation credential for the role named "{0}" in application "{1}". The native service results information are: {2}.
Explanation The security service was unable to create a delegation credential. This failure is usually due to incorrect or missing APPLDATA associated with the EJBROLE profile associated with the application role.
Action Verify that the EJBROLE profile exists and is defined correctly. If the profile is correct, use the information about the SAF service, and SAF service return codes to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6218W: The SAF delegation implementation was unable to create a subject in the role named "{0}" in application "{1}" for role delegation. The current subject will be used.
Explanation An earlier error prevented WebSphere from creating a subject that was in the required role. The target method will be dispatched without a change the current security environment. This may result in authorization errors as the caller may not be in the required role.
Action Please examine the previous messages to determine the initial cause of th error.
SECJ6219I: Basic authentication failed for user "{0}". The native service results related to the authentication failure are: {1}.
Explanation WebSphere was unable to authenticate the user with the password that was presented. It is likely that the user ID or password were not valid.
Action Verify that the user ID is valid. If the user is valid, use the provided SAF serivce information to get more information about the cause of the failure.
SECJ6221E: A native credential for user "{0}" cannot be recreated. The native service results related to this failure are: {1}.
Explanation An authorized service used to create a native z/OS credential has failed. The credential cannot be used by the caller.
Action Use the provided SAF service information to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6222I: Thread identity synchronization of user "{0}" was not authorized by the z/OS security product.
Explanation The z/OS security product did not authorize the creation of a security environment for the specified user. The security environment associated with the current address space will be used.
Action Contact your security product administrator to authorize the creation of a security environment for the specified user if required by your application.
SECJ6223E: Thread identity synchronization of user "{0}" failed. The native service results related to this failure are: {1}.
Explanation An authorized service used to perform thread identity synchronization has failed. The thread security environment may not have been associated with the current thread of execution.
Action User the provided SAF service information to determine the cause of the failure. If the problem persists, please contact the IBM support center.
SECJ6224I: The custom SAF role to profile mapper "{0}" has been initialized.
Explanation A custom SAF role to profile mapper has been configured, loaded, and initialized.
Action No user action is required.
SECJ6225E: Unable to load the custom SAF role to profile mapper "{0}" due to the following exception: {1}
Explanation WebSphere was unable to load and and instantiate the configured class. This is generally due to an incorrect class name.
Action Verify that the specified class name is correct and that it can be loaded by the WebSphere class loader.
SECJ6226W: Thread identity synchronization of user "{0}" is not allowed on the "initial pthread task."
Explanation The BPX1TLS service does cannot be called from the initial pthread task (IPT). If this service is called on the IPT, future calls to perform connection management or application thread identity synchronization will fail.
Action No action is required.
SECJ7000I: Security Configuration Name
Explanation None
Action None
SECJ7001I: Value
Explanation None
Action None
SECJ7002I: Security Settings
Explanation None
Action None
SECJ7003I: Active authentication mechanism
Explanation None
Action None
SECJ7004I: Active RMI/IIOP authentication protocol
Explanation None
Action None
SECJ7005I: User account repository
Explanation None
Action None
SECJ7006I: Authentication cache timeout
Explanation None
Action None
SECJ7007I: Default SSL settings
Explanation None
Action None
SECJ7008I: Administrative security
Explanation None
Action None
SECJ7009I: Restrict access to resource authentication data
Explanation None
Action None
SECJ7010I: Java 2 security
Explanation None
Action None
SECJ7011I: Warn if applications are granted custom permissions
Explanation None
Action None
SECJ7012I: Use domain-qualified user names
Explanation None
Action None
SECJ7013I: Use the local security server
Explanation None
Action None
SECJ7014I: Authentication mechanisms and expiration
Explanation None
Action None
SECJ7015I: Authentication configuration
Explanation None
Action None
SECJ7016I: Authentication context implementation class
Explanation None
Action None
SECJ7017I: Authentication validation config
Explanation None
Action None
SECJ7018I: Password
Explanation None
Action None
SECJ7019I: Simple authentication config
Explanation None
Action None
SECJ7020I: Timeout of authentication data forwarded between servers
Explanation None
Action None
SECJ7021I: Enable trust association
Explanation None
Action None
SECJ7022I: Interceptors
Explanation None
Action None
SECJ7023I: Interceptor class name
Explanation None
Action None
SECJ7024I: Single signon (SSO)
Explanation None
Action None
SECJ7025I: Domain name
Explanation None
Action None
SECJ7026I: Requires SSL
Explanation None
Action None
SECJ7027I: User Registry
Explanation None
Action None
SECJ7028I: Realm
Explanation None
Action None
SECJ7029I: Server user ID
Explanation None
Action None
SECJ7030I: Server user password
Explanation None
Action None
SECJ7031I: Authorization configuration
Explanation None
Action None
SECJ7032I: External authorization using a JACC provider
Explanation None
Action None
SECJ7033I: Authorization providers
Explanation None
Action None
SECJ7034I: Provider initialization class name
Explanation None
Action None
SECJ7035I: J2EE Policy implementation class name
Explanation None
Action None
SECJ7036I: Name
Explanation None
Action None
SECJ7037I: Policy configuration factory class name
Explanation None
Action None
SECJ7038I: Requires the EJB arguments policy context handler for access decisions
Explanation None
Action None
SECJ7039I: Role configuration factory class name
Explanation None
Action None
SECJ7040I: Supports dynamic module updates
Explanation None
Action None
SECJ7041I: Application login configuration
Explanation None
Action None
SECJ7042I: Entries
Explanation None
Action None
SECJ7043I: Alias
Explanation None
Action None
SECJ7044I: JAAS login modules
Explanation None
Action None
SECJ7045I: Authentication strategy
Explanation None
Action None
SECJ7046I: Module class name
Explanation None
Action None
SECJ7047I: Custom properties
Explanation None
Action None
SECJ7048I: Value
Explanation None
Action None
SECJ7049I: CSI
Explanation None
Action None
SECJ7050I: Claims
Explanation None
Action None
SECJ7051I: Stateful sessions
Explanation None
Action None
SECJ7052I: Layers
Explanation None
Action None
SECJ7053I: Supported ciphers
Explanation None
Action None
SECJ7054I: Enable
Explanation None
Action None
SECJ7055I: Establish trust in client
Explanation None
Action None
SECJ7056I: Required Quality of protection (QoP) settings
Explanation None
Action None
SECJ7057I: Confidentiality
Explanation None
Action None
SECJ7058I: Enable Protection
Explanation None
Action None
SECJ7059I: Integrity
Explanation None
Action None
SECJ7060I: Server Authentication
Explanation None
Action None
SECJ7061I: SSL configurations
Explanation None
Action None
SECJ7062I: performs
Explanation None
Action None
SECJ7063I: Session GC Idle Time
Explanation None
Action None
SECJ7064I: Session GC Interval
Explanation None
Action None
SECJ7065I: Authentication Layer Retry Count
Explanation None
Action None
SECJ7066I: SAS
Explanation None
Action None
SECJ7067I: SSL configuration repertoires
Explanation None
Action None
SECJ7068I: SSL settings
Explanation None
Action None
SECJ7069I: Client authentication
Explanation None
Action None
SECJ7070I: Cryptographic token
Explanation None
Action None
SECJ7071I: Key file format
Explanation None
Action None
SECJ7072I: Key file name
Explanation None
Action None
SECJ7073I: Key file password
Explanation None
Action None
SECJ7074I: Security level
Explanation None
Action None
SECJ7075I: Trust file format
Explanation None
Action None
SECJ7076I: Trust file name
Explanation None
Action None
SECJ7077I: Trust file password
Explanation None
Action None
SECJ7078I: Cryptographic token
Explanation None
Action None
SECJ7079I: Library file
Explanation None
Action None
SECJ7080I: Token Type
Explanation None
Action None
SECJ7081I: Custom properties
Explanation None
Action None
SECJ7082I: System login configuration
Explanation None
Action None
SECJ7083I: Properties
Explanation None
Action None
SECJ7085I: Required
Explanation None
Action None
SECJ7086I: Secure administration, applications, and infrastructure
Explanation None
Action None
SECJ7088I: Security
Explanation None
Action None
SECJ7089I: Console Name
Explanation None
Action None
SECJ7090I: Console Path Name
Explanation None
Action None
SECJ7091I: Name
Explanation None
Action None
SECJ7092I: Java Authentication and Authorization Service
Explanation None
Action None
SECJ7093I: System logins
Explanation None
Action None
SECJ7094I: Application logins
Explanation None
Action None
SECJ7095I: Administrative users and groups
Explanation None
Action None
SECJ7096I: Administrative Role Name
Explanation None
Action None
SECJ7097I: Administrative Role Value
Explanation None
Action None
SECJ7098I: Administrator User
Explanation None
Action None
SECJ7099I: No Administrator User
Explanation None
Action None
SECJ7100I: Operator User
Explanation None
Action None
SECJ7101I: No Operator user or group
Explanation None
Action None
SECJ7102I: Moderator User
Explanation None
Action None
SECJ7103I: No Moderator user or group
Explanation None
Action None
SECJ7104I: Configurator User
Explanation None
Action None
SECJ7105I: No Configurator user or group
Explanation None
Action None
SECJ7106I: Administrative User Roles
Explanation None
Action None
SECJ7107I: Administrative Group Roles
Explanation None
Action None
SECJ7108I: Administrator Group
Explanation None
Action None
SECJ7109I: Operator Group
Explanation None
Action None
SECJ7110I: Moderator Group
Explanation None
Action None
SECJ7111I: Configurator Group
Explanation None
Action None
SECJ7112I: CORBA Naming Console Name
Explanation None
Action None
SECJ7113I: CORBA Naming Role Name
Explanation None
Action None
SECJ7114I: CORBA Naming Role Value
Explanation None
Action None
SECJ7115I: CORBA Naming Console Path
Explanation None
Action None
SECJ7116I: Read
Explanation None
Action None
SECJ7117I: Everyone
Explanation None
Action None
SECJ7118I: ServerId
Explanation None
Action None
SECJ7119I: All Authenticated Users and Groups
Explanation None
Action None
SECJ7120I: Specific User Ids
Explanation None
Action None
SECJ7121I: No roles defined
Explanation None
Action None
SECJ7122I: CORBA Naming Service Groups
Explanation None
Action None
SECJ7123I: Write
Explanation None
Action None
SECJ7124I: Create
Explanation None
Action None
SECJ7125I: Delete
Explanation None
Action None
SECJ7126I: Environment
Explanation None
Action None
SECJ7127I: Naming
Explanation None
Action None
SECJ7128I: SSL certificate and key management
Explanation None
Action None
SECJ7129I: Console Name for Certificate Management
Explanation None
Action None
SECJ7130I: Console Path for Certificate Management
Explanation None
Action None
SECJ7131I: Certificate Alias
Explanation None
Action None
SECJ7132I: Certificate Expiry
Explanation None
Action None
SECJ7133I: Certificate Management
Explanation None
Action None
SECJ7134I: RMI/IIOP security
Explanation None
Action None
SECJ7135I: Authentication mechanisms and expiration
Explanation None
Action None
SECJ7136I: Authentication expiration
Explanation None
Action None
SECJ7137I: Application security
Explanation None
Action None
SECJ7138I: External authorization providers
Explanation None
Action None
SECJ7139I: Manage endpoint security configurations
Explanation None
Action None
SECJ7140I: Web security
Explanation None
Action None
SECJ7141I: Trust association
Explanation None
Action None
SECJ7142I: Interceptors
Explanation None
Action None
SECJ7143I: Single signon (SSO)
Explanation None
Action None
SECJ7144I: Key stores
Explanation None
Action None
SECJ7145I: Trust managers
Explanation None
Action None
SECJ7146I: Key managers
Explanation None
Action None
SECJ7147I: Management scope
Explanation None
Action None
SECJ7148I: Key set groups
Explanation None
Action None
SECJ7149I: Key sets
Explanation None
Action None
SECJ7150I: Schedules
Explanation None
Action None
SECJ7151I: Notifications
Explanation None
Action None
SECJ7152I: Manage certificate expiration
Explanation None
Action None
SECJ7153I: Web Authentication
Explanation None
Action None
SECJ7154I: Internal server ID
Explanation None
Action None
SECJ7155I: Use the registry server id instead of the internal server id
Explanation None
Action None
SECJ7156I: Trusted identity
Explanation None
Action None
SECJ7157I: Password
Explanation None
Action None
SECJ7158I: Client Authentication Supported
Explanation None
Action None
SECJ7159I: Enabled Ciphers
Explanation None
Action None
SECJ7160I: JSSE Provider
Explanation None
Action None
SECJ7161I: Trust store
Explanation None
Action None
SECJ7162I: SSL Protocol
Explanation None
Action None
SECJ7163I: File-based key store
Explanation None
Action None
SECJ7164I: Host list
Explanation None
Action None
SECJ7165I: Initialize at startup
Explanation None
Action None
SECJ7166I: Path
Explanation None
Action None
SECJ7167I: Provider
Explanation None
Action None
SECJ7168I: Type
Explanation None
Action None
SECJ7169I: milliseconds
Explanation None
Action None
SECJ7170I: seconds
Explanation None
Action None
SECJ7171I: minutes
Explanation None
Action None
SECJ7172I: Dynamically update run time when SSL configuration changes occur
Explanation None
Action None
SECJ7173I: Ignore case for authorization
Explanation None
Action None
SECJ7174I: Custom registry class name
Explanation None
Action None
SECJ7175I: Default client certificate alias
Explanation None
Action None
SECJ7176I: Default server certificate alias
Explanation None
Action None
SECJ7177I: Algorithm
Explanation None
Action None
SECJ7178I: Class name
Explanation None
Action None
SECJ7179I: Additional Trust Manager attributes
Explanation None
Action None
SECJ7180I: Key file name
Explanation None
Action None
SECJ7181I: Class name
Explanation None
Action None
SECJ7182I: Hover help key
Explanation None
Action None
SECJ7183I: Inclusive
Explanation None
Action None
SECJ7184I: NLS Range Key
Explanation None
Action None
SECJ7185I: Range
Explanation None
Action None
SECJ7186I: Class name
Explanation None
Action None
SECJ7187I: Certificate alias
Explanation None
Action None
SECJ7188I: Direction
Explanation None
Action None
SECJ7189I: Scope Name
Explanation None
Action None
SECJ7190I: Scope Type
Explanation None
Action None
SECJ7191I: Automatically generate keys
Explanation None
Action None
SECJ7192I: Key set
Explanation None
Action None
SECJ7193I: Minute
Explanation None
Action None
SECJ7194I: Key alias prefix name
Explanation None
Action None
SECJ7195I: Delete key references that are beyond the maximum number of keys
Explanation None
Action None
SECJ7196I: Specifies a key pair instead of a key
Explanation None
Action None
SECJ7197I: Key generation class
Explanation None
Action None
SECJ7198I: Maximum key references
Explanation None
Action None
SECJ7199I: Key reference
Explanation None
Action None
SECJ7200I: Key Alias
Explanation None
Action None
SECJ7201I: Version
Explanation None
Action None
SECJ7202I: Day of week
Explanation None
Action None
SECJ7203I: Frequency
Explanation None
Action None
SECJ7204I: Hour
Explanation None
Action None
SECJ7205I: Next start date
Explanation None
Action None
SECJ7206I: List of e-mail addresses
Explanation None
Action None
SECJ7207I: Log to SystemOut
Explanation None
Action None
SECJ7208I: Automatically replace expiring self-signed certificates
Explanation None
Action None
SECJ7209I: Expiration notification threshold
Explanation None
Action None
SECJ7210I: Delete old certificate after replacement
Explanation None
Action None
SECJ7211I: Enable checking
Explanation None
Action None
SECJ7212I: Schedules
Explanation None
Action None
SECJ7213I: Notifications
Explanation None
Action None
SECJ7214I: days
Explanation None
Action None
SECJ7215I: messages
Explanation None
Action None
SECJ7216I: Primary administrative user name
Explanation None
Action None
SECJ7217I: General settings
Explanation None
Action None
SECJ7218I: CORBA Naming Service Users
Explanation None
Action None
SECJ7219I: Base distinguished name
Explanation None
Action None
SECJ7220I: Bind distinguished name
Explanation None
Action None
SECJ7221I: Bind password
Explanation None
Action None
SECJ7222I: Reuse connection
Explanation None
Action None
SECJ7223I: Search timeout
Explanation None
Action None
SECJ7224I: SSL enabled
Explanation None
Action None
SECJ7225I: Custom registry class name
Explanation None
Action None
SECJ7226I: Use the United States Federal Information Processing Standard (FIPS) algorithms
Explanation None
Action None
SECJ7300E: Failed in attempt to add administrative user to virtual member manager
Explanation Admin user id could not be added to virtual member manager file-based registry
Action Validate virtual member manager has been configured
SECJ7305E: Found other virtual member manager repository configurations. Only the built-in virtual member manager file-based repository is supported through the wizard
Explanation Found other virtual member manager repository configurations but only file-based is supported in the wizard
Action None
SECJ7310E: Workspace exception while adding user to admin-authz.xml
Explanation An error occuring accessing the Workspace
Action None
SECJ7311E: Failed to add user to admin-authz.xml
Explanation Error occurred updating the admin-authz.xml file with the new admin user
Action None
SECJ7312E: Failed to get to Security workspace
Explanation Exception raised when accessing the Security object in the workspace
Action None
SECJ7320E: Invalid user registry type
Explanation Valid user registry types are: LDAPUserRegistry, LocalOSUserRegistry, CustomUserRegistry, WIMUserRegistry
Action Ensure user registry type is a valid type
SECJ7321E: Invalid LDAP user registry type
Explanation LDAP registry type was not a valid type
Action Ensure user registry type is a valid type
SECJ7330E: Failed to verify admin user would not be locked out of console
Explanation Exception raised while verifying at least one admin id in the admin-authz.xml exists in the user registry
Action None
SECJ7331E: Failed to auto-generate the LTPA password
Explanation Could not auto-generate an LTPA password
Action None
SECJ7332E: Failed to auto-generate the Server Id
Explanation Could not auto-generate a Server Id
Action None
SECJ7333E: Could not find admin name in the specified user registry
Explanation Admin name does not exist in the specified user registry
Action Ensure the admin name exists in the user registry prior to executing command
SECJ7334E: Exception raised while applying wizard security settings
Explanation Caught exception while applying wizard security settings
Action None
SECJ7335E: Exception raised while getting wizard security settings
Explanation Caught exception while getting wizard security settings
Action None
SECJ7336E: Exception raised while getting Application Security setting
Explanation Caught exception while getting Application Security setting
Action None
SECJ7337E: Exception raised while getting Global Security setting
Explanation Caught exception while getting Global Security setting
Action None
SECJ7338E: Exception raised while setting Global Security setting
Explanation Caught exception while setting Global Security setting
Action None
SECJ7339E: Exception raised while validating admin name
Explanation Caught exception while validating admin name
Action None
SECJ7340E: Exception raised trying to connect to LDAP server
Explanation Exception raised connecting to the LDAP server
Action Verify input parameters are correct
SECJ7341E: Exception raised while setting useRegistryServerId
Explanation Exception raised while setting useRegistryServerId in the user registry object
Action None
SECJ7342E: Failed to validate user/password
Explanation Failed to validate user password in WIM registry
Action None
SECJ7350E: Exception raised while adding adminId to user registry
Explanation Exception raised while adding adminId to user registry
Action None
SECJ7355E: Failed to add the adminID to the user registry object
Explanation Failed to add the adminID to the user registry object
Action None
SECJ7356E: The application server cannot determine the roleMapping value. Check the deployment descriptor configuration and ensure that application security is enabled.
Explanation The application server cannot determine the roleMapping value because application security might not be enabled or there is an error in the deployment descriptor configuration.
Action Ensure that role mapping is defined correctly and application security is enabled.
Reference topic    

Terms of Use | Feedback

Last updated: Feb 18, 2011 4:35:06 PM CST
http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.messages.doc/com.ibm.ejs.resources.security.html

© Copyright IBM Corporation 2006, 2010. All Rights Reserved.
This information center is powered by Eclipse technology. (http://www.eclipse.org)