ASG
IBM
Zystems
Cressida
Icon
Netflexity
 
  MQSeries.net
Search  Search       Tech Exchange      Education      Certifications      Library      Info Center      SupportPacs      LinkedIn  Search  Search                                                                   FAQ  FAQ   Usergroups  Usergroups
 
Register  ::  Log in Log in to check your private messages
 
RSS Feed - WebSphere MQ Support RSS Feed - Message Broker Support

MQSeries.net Forum Index » WebSphere Process Server (WID/WPS/WAS+) » WAS Global Security issues

Post new topic  Reply to topic
 WAS Global Security issues « View previous topic :: View next topic » 
Author Message
jidvishrawal
PostPosted: Mon May 14, 2007 9:16 pm    Post subject: WAS Global Security issues Reply with quote

Apprentice

Joined: 07 Mar 2007
Posts: 29
Location: USA
This is the error that I am getting while starting up the WAS server through WID. Please help me out with this.

Code:


[5/14/07 20:50:51:877 IST] 00000061 RoleBasedAuth A   SECJ0305I: The role-based authorization check failed for admin-authz operation Server:getName.  The user UNAUTHENTICATED (unique ID: UNAUTHENTICATED) was not granted any of the following required roles: administrator, operator, configurator, monitor.
[5/14/07 20:50:56:393 IST] 0000000f RoleBasedAuth E   SECJ0306E: No received or invocation credential exist on the thread. The Role based authorization check will not have an accessId of the caller to check. The parameters are: access check method getName on resource Server and module Server. The stack trace is java.lang.Exception: Invocation and received credentials are both null
   at com.ibm.ws.security.role.RoleBasedAuthorizerImpl.checkAccess(RoleBasedAuthorizerImpl.java(Compiled Code))
   at com.ibm.ws.management.AdminServiceImpl.preInvoke(AdminServiceImpl.java:1799)
   at com.ibm.ws.management.AdminServiceImpl.preInvoke(AdminServiceImpl.java:1706)
   at com.ibm.ws.management.AdminServiceImpl.preInvoke(AdminServiceImpl.java:1636)
   at com.ibm.ws.management.AdminServiceImpl.preInvoke(AdminServiceImpl.java:1609)
   at com.ibm.ws.management.AdminServiceImpl.getAttribute(AdminServiceImpl.java:590)
   at com.ibm.ws.management.connector.AdminServiceDelegator.getAttribute(AdminServiceDelegator.java:117)
   at com.ibm.ws.management.connector.rmi.RMIConnectorService.getAttribute(RMIConnectorService.java:124)
   at com.ibm.ws.management.connector.rmi._RMIConnectorService_Tie.getAttribute(_RMIConnectorService_Tie.java:209)
   at com.ibm.ws.management.connector.rmi._RMIConnectorService_Tie._invoke(_RMIConnectorService_Tie.java:97)
   at com.ibm.CORBA.iiop.ServerDelegate.dispatchInvokeHandler(ServerDelegate.java:610)
   at com.ibm.CORBA.iiop.ServerDelegate.dispatch(ServerDelegate.java:463)
   at com.ibm.rmi.iiop.ORB.process(ORB.java:439)
   at com.ibm.CORBA.iiop.ORB.process(ORB.java:1737)
   at com.ibm.rmi.iiop.Connection.respondTo(Connection.java:2350)
   at com.ibm.rmi.iiop.Connection.doWork(Connection.java:2195)
   at com.ibm.rmi.iiop.WorkUnitImpl.doWork(WorkUnitImpl.java:65)
   at com.ibm.ejs.oa.pool.PooledThread.run(ThreadPool.java:95)
   at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java(Compiled Code))

_________________
Thanks and regards,
Jiddvish Rawal
Back to top
View user's profile Send private message
fjb_saper
PostPosted: Tue May 15, 2007 6:43 pm    Post subject: Reply with quote

Grand High Poobah

Joined: 18 Nov 2003
Posts: 20697
Location: LI,NY
Quote:
Invocation and received credentials are both null

Enough said.
And please don't double post. Ask in the thread of the original post for it to be moved to the right forum...

And see the other post. Before role based authentication is going to work you need to define not only the roles but the users to the roles.

This is a task typically outside of the app that is done by the WAS admin...
_________________
MQ & Broker admin
Back to top
View user's profile Send private message Send e-mail
mdncan
PostPosted: Wed May 16, 2007 2:57 pm    Post subject: Reply with quote

Acolyte

Joined: 11 May 2005
Posts: 59
Location: US
First disable the global security first by modifying the security.xml and login again and then enable the security. Add the groups to the user, before you restart the server to take place the new security settings. Follow the instructions documented in info center or redbook.
Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic  Reply to topic Page 1 of 1

MQSeries.net Forum Index » WebSphere Process Server (WID/WPS/WAS+) » WAS Global Security issues
Jump to:  



You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum
Protected by Anti-Spam ACP
  
 


Theme by Dustin Baccetti
Powered by phpBB © 2001, 2002 phpBB Group

Copyright © MQSeries.net. All rights reserved.