000037254 - Migration fails with 'ORA-19011: Character string buffer too small' error when upgrading RSA Identity Governance & Lifecycle 7.x

Document created by RSA Customer Support Employee on Mar 25, 2019Last modified by RSA Customer Support Employee on Feb 14, 2020
Version 5Show Document
  • Comment0
  • View in full screen mode

Article Content

Article Number000037254
Applies ToRSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0, 7.1.1
 
IssueThe RSA Identity Governance & Lifecycle migration fails when upgrading to 7.1.x.

The following error message is logged to the migrate.log file located in:
   $AVEKSA_HOME/wildfly/standalone/log/migrate.log if the migration was started from the RSA Identity Governance & Lifecycle user interface, or,
   $AVEKSA_HOME/database/log/migrate.log if the migration was executed from the command line.
 


SQL/line#: 
/home/oracle/wildfly-10.1.0.Final/standalone/tmp/vfs/temp/tempcfc711f6815c3916/content-b6a949b558f78fb3/contents/
aveksa.war/WEB-INF/database/updates/7.1/ACM-72719.sql(2):
Start time [Mon Mar 11 14:07:55 CDT 2019]
update t_av_entitlementreviewdef set configuration = replace(configuration,
        '</rev:review-config>',
        '<rev:review-analysis-config>
          <rev:analyzeCategory>Violations</rev:analyzeCategory>
        </rev:review-analysis-config>
        </rev:review-config>')
        where review_type = 'U' and configuration not like '%<rev:review-analysis-config>%'
java.sql.SQLException: ORA-19011: Character string buffer too small


 
CauseThis issue occurs during the upgrade of Reviews if the configuration elements in part of the Review definition exceed 4000 characters (4K).  

Specifically, this may occur if the review contains an extensive explicit list of entitlements, roles, groups or data resources.
 
Resolution

This issue is resolved in the following RSA Identity Governance & Lifecycle versions and/or patch levels:



  • RSA Identity Governance & Lifecycle 7.1.0 P08
  • RSA Identity Governance & Lifecycle 7.1.1 P02
  • RSA Identity Governance & Lifecycle 7.2
WorkaroundIdentify which Review item(s) have configuration objects that exceed 4000 characters (see Notes).

The following options may be used to work around this issue.
  1. Delete the problem review.
  2. Edit the problem review and remove or reduce entitlements, roles, groups or data resources.
  3. Edit the problem review and filter by groupings instead of individual items.

For example, instead of listing all AD groups individually, select AD groups by business source.
 
User-added image
NotesThe following SQL command may be used to identify which review has a configuration object that exceeds 4000 characters.
 


SELECT
    name
FROM
    t_av_entitlementreviewdef
WHERE
    length(xmltype.getclobval(configuration)) > 4000;


 

Attachments

    Outcomes