000014630 - AXM- RSA agent 4.7 for Websphere Application Server 6.1 & 7: SecurityAdmin E SECJ0233E exception from the User Registry with pattern and limit 100.

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014630
Applies ToRSA AxM Agent 4.7 for IBM Websphere Application Server, v6.1 & 7
IssueAXM- RSA agent 4.7 for Websphere Application Server 6.1 & 7: SecurityAdmin E SECJ0233E exception from the User Registry with pattern <admin user> and limit 100.

Installation of the agent fails with the following error:

00000037 SecurityAdmin E SECJ0233E: An unexpected exception occurred when trying to get users from the User Registry with pattern wsadmin and limit 100. The exception is com.ibm.websphere.security.CustomRegistryException: API call failed unexpectedly: the connection may no longer be valid.

Where: wsadmin is the administrative account being used for websphere


The full exception in the Sytem.Out log is

[7/29/09 13:51:37:826 EDT] 00000037 SecurityAdmin E   SECJ0233E: An unexpected exception occurred when trying to get users from the User Registry with pattern wsadmin and limit 100. The exception is com.ibm.websphere.security.CustomRegistryException: API call failed unexpectedly: the connection may no longer be valid.
 at com.rsa.cleartrust.websphere.registry.CTRegistry.getUsers(Unknown Source)
 at com.ibm.ws.security.registry.UserRegistryImpl.getUsers(UserRegistryImpl.java:388)
 at com.ibm.ws.security.core.SecurityAdmin.getUsers(SecurityAdmin.java:707)
 at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
 at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
 at java.lang.reflect.Method.invoke(Method.java:585)
 at sun.reflect.misc.Trampoline.invoke(MethodUtil.java:36)
 at sun.reflect.GeneratedMethodAccessor26.invoke(Unknown Source)
 at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
 at java.lang.reflect.Method.invoke(Method.java:585)
 at sun.reflect.misc.MethodUtil.invoke(MethodUtil.java:243)
 at javax.management.modelmbean.RequiredModelMBean.invokeMethod(RequiredModelMBean.java:1073)
 at javax.management.modelmbean.RequiredModelMBean.invoke(RequiredModelMBean.java:954)
 at com.sun.jmx.mbeanserver.DynamicMetaDataImpl.invoke(DynamicMetaDataImpl.java:213)
 at com.sun.jmx.mbeanserver.MetaDataImpl.invoke(MetaDataImpl.java:220)
 at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:815)
 at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:784)
 at com.ibm.ws.management.AdminServiceImpl$1.run(AdminServiceImpl.java:1081)
 at com.ibm.ws.security.util.AccessController.doPrivileged(AccessController.java:118)
 at com.ibm.ws.management.AdminServiceImpl.invoke(AdminServiceImpl.java:974)
 at com.ibm.ws.security.admintask.ValidateAdminName.afterStepsExecuted(ValidateAdminName.java:575)
 at com.ibm.websphere.management.cmdframework.provider.AbstractTaskCommand.executeReal(AbstractTaskCommand.java:703)
 at com.ibm.websphere.management.cmdframework.provider.AbstractTaskCommand.execute(AbstractTaskCommand.java:655)
 at com.ibm.ws.console.security.UserRegistryDetailActionGen.validateAdminId(UserRegistryDetailActionGen.java:262)
 at com.ibm.ws.console.security.UserRegistryDetailActionGen.processAdminId(UserRegistryDetailActionGen.java:240)
 at com.ibm.ws.console.security.CustomUserRegistryDetailAction.execute(CustomUserRegistryDetailAction.java:177)
 at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:484)
 at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:274)
 at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1486)
 at org.apache.struts.action.ActionServlet.doPost(ActionServlet.java:528)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:763)
 at javax.servlet.http.HttpServlet.service(HttpServlet.java:856)
 at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1081)
 at com.ibm.ws.webcontainer.servlet.ServletWrapper.service(ServletWrapper.java:1016)
 at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:145)
 at com.ibm.ws.console.core.servlet.WSCUrlFilter.setUpCommandAssistence(WSCUrlFilter.java:792)
 at com.ibm.ws.console.core.servlet.WSCUrlFilter.continueStoringTaskState(WSCUrlFilter.java:363)
 at com.ibm.ws.console.core.servlet.WSCUrlFilter.doFilter(WSCUrlFilter.java:229)
 at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:190)
 at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:130)
 at com.ibm.ws.webcontainer.filter.WebAppFilterChain._doFilter(WebAppFilterChain.java:87)
 at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:771)
 at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:679)
 at com.ibm.ws.webcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:546)
 at com.ibm.ws.wswebcontainer.servlet.ServletWrapper.handleRequest(ServletWrapper.java:478)
 at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3391)
 at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:267)
 at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:811)
 at com.ibm.ws.wswebcontainer.WebContainer.handleRequest(WebContainer.java:1455)
 at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:115)
 at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:458)
 at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:387)
 at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:102)
 at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1818)
 at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
 at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
 at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
 at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:136)
 at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:195)
 at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:743)
 at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:873)
 at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1473)
.

Resolution

Disable global security in websphere and reinstall the agent per this link from IBM

http://publib.boulder.ibm.com/infocenter/wedmInfo/v6r0/index.jsp?topic=/com.ibm.websphere.dms.doc/dm/inst_sec_imp_was.html

To disable security in WebSphere Application Server, do the following steps:

  1. Open WebSphere Administrative Console.

    Click Start > Programs > IBM WebSphere > Application Server v6.0 > Profiles > default (profile name) > Administrative Console

    If you are prompted for a user name and a password, security is enabled.

  2. Click Security on the left.
  3. Select Global Security.
  4. Under General Properties, ensure that the Enabled check box has no check mark.

    Under General Properties, ensure that the Enforce Java 2 Security check box has no check mark.

  5. Scroll down and click Apply.
  6. Click the Save text in the Message(s) pane to save the configuration changes.
  7. Click the Save button in the Save to Master Configuration pane to update the master repository.
  8. The IBM WebSphere Application Server - node_name (such as host_nameNode01) and the WebSphere Application Server - DMS_AppServer services must be stopped and restarted for these changes to take effect.

    To stop and start these services, click Start > Settings > Control Panel > Administrative Tools > Services. In the services list, highlight the service, then use the Action menu to stop and start each service.

  

 

Legacy Article IDa46914

Attachments

    Outcomes