|
Problem |
Enabling security through the Security Center appears to
have accepted the update but after restarting WebSphere, security has not
been enabled.
Security trace shows the generic authentication exception codes JSAS0026E
and JSAS0446E.
[12/4/02 18:32:45:955 EST] 678c96 WSAccessManag D Using vendor supplied
authorizer
[12/4/02 18:32:45:956 EST] 678c96 WSAccessManag D Calling Vendor Supplied
Authorizer roles are = AdminRole
[12/4/02 18:32:58:258 EST] 678c96 PDWASAuthzMan W getPDPrincipal: Caught
an exception, details are: IllegalStateException
[12/4/02 18:32:58:281 EST] 678c96 PDWASAuthzMan W getPDPrincipal: Throwing
a SecurityProviderException exception
[12/4/02 18:32:58:296 EST] 678c96 PDWASAuthzMan W isGrantedAnyRole: Caught
an exception, details are: SecurityProviderException
...
[12/4/02 18:32:58:357 EST] 678c96 WSAccessManag X
com.ibm.websphere.security.SecurityProviderException: Caught an exception,
details are: IllegalStateException at
com.tivoli.pdwas.websphere.PDWASAuthzManager.getPDPrincipal(PDWASAuthzManager.java:1473)
at
com.tivoli.pdwas.websphere.PDWASAuthzManager.isGrantedAnyRole(PDWASAuthzManager.java:862)
at
com.tivoli.pdwas.websphere.PDWASAuthzManager.isEveryoneGranted(PDWASAuthzManager.java:694 |
|
Solution |
When Tivoli's Policy Director (PD) was installed it had
updated the sas.server.props as follows.
###################################################################
#
#
Miscellaneous Properties
#
###################################################################
#------------------------------------------------------------------
#Miscellaneous
#------------------------------------------------------------------
#Thu Dec 05 18:42:13 EST 2002
com.ibm.websphere.security.authorizationTable=com.tivoli.pdwas.websphere.PDWASAuthzManager
When this line was commented out and security was able to be enabled
through the Security Center.
This was necessary because Policy Director had not been setup yet to
handle security. |
|
|
|
|
|
|