000014602 - AM 7.1.2- External Identity source users fail to authenticate  Principal not found

Document created by RSA Customer Support Employee on Jun 14, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000014602
Applies ToAuthentication Manager 7.1.2 on all supported platforms
Appliance 3.0
IssueExternal identity source users suddenly fail to authenticate successful. Authentication Activity Monitor shows "Principal not Found"
Not all Authentication Manager Servers are effected.

The Server imsTrace.log has the following exception:

2010-07-27 08:45:45,103, [[ACTIVE] ExecuteThread: '1' for queue: 'weblogic.kernel.Default (self-tuning)'], (InterruptTimeout.java:41), trace.com.rsa.ims.connectionpool.jca.ldap.InterruptTimeout, WARN, tcbrsa.ad.texaschildrenshospital.org, , , , Failed lookup of ims.ldap.read-timeout-msecusing default value of 60000msec
com.rsa.common.DataNotFoundException: No data found
at com.rsa.ims.configuration.impl.ConfigurationServiceImpl.getConfiguration(ConfigurationServiceImpl.java:472)
at com.rsa.ims.connectionpool.jca.ldap.InterruptTimeout$1.run(InterruptTimeout.java:62)
at com.rsa.ims.connectionpool.jca.ldap.InterruptTimeout$1.run(InterruptTimeout.java:60)
at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:91)at com.rsa.security.SecurityContext.doAs(SecurityContext.java:400)
at com.rsa.security.SecurityContext.doAsSystem(SecurityContext.java:431)
at com.rsa.ims.connectionpool.jca.ldap.InterruptTimeout.getConfigDataAsSystem(InterruptTimeout.java:59)
at com.rsa.ims.connectionpool.jca.ldap.InterruptTimeout.startReadTimeoutTimer(InterruptTimeout.java:36)
at com.rsa.ims.connectionpool.jca.ldap.LdapContextImpl.executeWithTimeout(LdapContextImpl.java:96)
at com.rsa.ims.connectionpool.jca.ldap.LdapContextImpl.search(LdapContextImpl.java:1008)
at com.rsa.ims.instrumentation.monitor.InstrumentedLdapContextProxy.search(InstrumentedLdapContextProxy.java:1296)
at com.rsa.ims.admin.dal.ldap.PrincipalAccessLDAP.searchPrincipalMatch(PrincipalAccessLDAP.java:941)
at com.rsa.ims.admin.impl.PrincipalAdministrationImpl.searchSingleIS(PrincipalAdministrationImpl.java:3570)
at com.rsa.ims.admin.impl.PrincipalAdministrationImpl.search(PrincipalAdministrationImpl.java:3169)
at com.rsa.ims.admin.impl.PrincipalAdministrationImpl.search(PrincipalAdministrationImpl.java:3045)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.springframework.aop.support.AopUtils.invokeJoinpointUsingReflection(AopUtils.java:304)
at org.springframework.aop.framework.JdkDynamicAopProxy.invoke(JdkDynamicAopProxy.java:198)
at $Proxy86.search(Unknown Source)
at com.rsa.admin.SearchPrincipalsCommand.performExecute(SearchPrincipalsCommand.java:304)
at com.rsa.command.LocalTarget.executeCommand(LocalTarget.java:75)
at com.rsa.ims.command.LocalTransactionalCommandTarget.access$101(LocalTransactionalCommandTarget.java:45)
at com.rsa.ims.command.LocalTransactionalCommandTarget$1.doInTransaction(LocalTransactionalCommandTarget.java:193)
at org.springframework.transaction.support.TransactionTemplate.execute(TransactionTemplate.java:127)
at com.rsa.ims.command.LocalTransactionalCommandTarget.executeCommand(LocalTransactionalCommandTarget.java:186)
at com.rsa.command.CommandServerEngine$CommandExecutor.run(CommandServerEngine.java:543)
at com.rsa.command.CommandServerEngine$CommandExecutor.run(CommandServerEngine.java:520)
at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:91)
at com.rsa.security.SecurityContext.doAs(SecurityContext.java:400)
at com.rsa.command.CommandServerEngine.execute(CommandServerEngine.java:307)
at com.rsa.command.CommandServerEngine.executeCommand(CommandServerEngine.java:250)
at com.rsa.command.CommandServerEngine.executeCommand(CommandServerEngine.java:161)
at com.rsa.command.CommandServerBean.executeCommand(CommandServerBean.java:174)
at com.rsa.command.CommandServerBean.executeCommandManagedTx(CommandServerBean.java:116)
at com.rsa.command.CommandServer_qt4u4w_EOImpl.executeCommandManagedTx(CommandServer_qt4u4w_EOImpl.java:136)
at com.rsa.command.CommandServer_qt4u4w_EOImpl_WLSkel.invoke(Unknown Source)
at weblogic.rmi.internal.ServerRequest.sendReceive(ServerRequest.java:174)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:335)
at weblogic.rmi.cluster.ClusterableRemoteRef.invoke(ClusterableRemoteRef.java:252)
at com.rsa.command.CommandServer_qt4u4w_EOImpl_1000_WLStub.executeCommandManagedTx(Unknown Source)
at com.rsa.command.EJBRemoteTargetBase$CommandExecutor.run(EJBRemoteTargetBase.java:216)
at com.rsa.command.EJBRemoteTargetBase$CommandExecutor.run(EJBRemoteTargetBase.java:168)
at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)
at weblogic.security.service.SecurityManager.runAs(Unknown Source)
at weblogic.security.Security.runAs(Security.java:61)
at com.rsa.command.WebLogicSecurityContextWrapper.runAs(WebLogicSecurityContextWrapper.java:52)
at com.rsa.command.EJBRemoteTargetBase.executeCommand(EJBRemoteTargetBase.java:144)
at com.rsa.command.TargetableCommand.execute(TargetableCommand.java:237)
at com.rsa.admin.SearchPrincipalsCommand.execute(SearchPrincipalsCommand.java:226)
at com.rsa.ims.management.console.util.CommandUtil.executeCommand(CommandUtil.java:161)
at com.rsa.ims.management.console.common.handler.PrincipalHandler.executeRetrieveList(PrincipalHandler.java:210)
at com.rsa.ims.management.console.common.handler.AbstractDomainObjectHandler.retrieveList(AbstractDomainObjectHandler.java:338)
at com.rsa.ims.management.console.common.action.BaseSearchAction.retrieveList(BaseSearchAction.java:432)
at com.rsa.ims.management.console.common.action.BaseSearchAction.search(BaseSearchAction.java:86)
at com.rsa.ims.web.console.action.PrincipalAction.search(PrincipalAction.java:2040)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:585)
at org.apache.struts.actions.DispatchAction.dispatchMethod(DispatchAction.java:266)
at com.rsa.ui.common.struts.action.RSABaseDispatchAction.execute(RSABaseDispatchAction.java:180)
at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:413)

CauseThis is caused because the connection to the Active Directory server has timed out and Authentication Manager was not able to recover the connection
Resolution

Restarting the Authentication Manager services on the effected server resolves the issue.

Legacy Article IDa52052

Attachments

    Outcomes