000025362 - Unable to authenticate to RKM Administration GUI post-install : 'Identity does not exist:'

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 22, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000025362
Applies ToRSA Key Manager (RKM) version 2.1.0
Microsoft SQL Server 2005
Microsoft Windows 2003 Server
RSA Access Manager version 6.2
IssueTo successfully authenticate to the RSA Key Manager Administration GUI
2008-01-30 14:36:49,531 WARN TP-Processor3 com.rsa.keymanager.transport.core.filter.DefaultAuthenticationServletFilter - Authentication error
com.rsa.keymanager.access.framework.AuthenticationException: Identity does not exist: kmsadmin
    at com.rsa.keymanager.access.user.DefaultInternalAuthenticator.pop(DefaultInternalAuthenticator.java:56)
    at com.rsa.keymanager.access.user.DefaultInternalAuthenticator.checkIdentityExists(DefaultInternalAuthenticator.java:52)
    at com.rsa.keymanager.access.user.DefaultInternalAuthenticator.authenticate(DefaultInternalAuthenticator.java:41)
    at com.rsa.keymanager.access.user.DefaultInternalAuthenticator.get(DefaultInternalAuthenticator.java:26)
    at com.rsa.keymanager.access.user.DefaultUserPasswordIdentityEstablisher.get(DefaultUserPasswordIdentityEstablisher.java:12)
    at com.rsa.keymanager.access.framework.DefaultAuthenticationMaster.establishIdentity(DefaultAuthenticationMaster.java:43)
    at com.rsa.keymanager.access.framework.DefaultAuthenticationMaster.bindIdentityToThread(DefaultAuthenticationMaster.java:31)
    at com.rsa.keymanager.transport.core.filter.DefaultAuthenticationServletFilter.doFilter(DefaultAuthenticationServletFilter.java:41)
    at com.rsa.keymanager.transport.core.filter.DefaultAuthenticationServletFilter.filter(DefaultAuthenticationServletFilter.java:35)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:34)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:25)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
    at com.rsa.keymanager.edge.javax.servlet.DefaultFilterChain.doFilter(DefaultFilterChain.java:16)
    at com.rsa.keymanager.transport.core.filter.DefaultFilterChainer.chain(DefaultFilterChainer.java:21)
    at com.rsa.keymanager.transport.core.filter.DefaultTransactionFilter$1.doInTransaction(DefaultTransactionFilter.java:17)
    at com.rsa.keymanager.database.connection.core.transaction.DefaultTransactionManager.execute(DefaultTransactionManager.java:12)
    at com.rsa.keymanager.transport.core.filter.DefaultTransactionFilter.filter(DefaultTransactionFilter.java:15)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:34)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:25)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
    at com.rsa.keymanager.edge.javax.servlet.DefaultFilterChain.doFilter(DefaultFilterChain.java:16)
    at com.rsa.keymanager.transport.core.filter.DefaultFilterChainer.chain(DefaultFilterChainer.java:21)
    at com.rsa.keymanager.transport.core.filter.DefaultRequestStampFilter.filter(DefaultRequestStampFilter.java:16)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:34)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:25)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
    at com.rsa.keymanager.edge.javax.servlet.DefaultFilterChain.doFilter(DefaultFilterChain.java:16)
    at com.rsa.keymanager.transport.core.filter.DefaultFilterChainer.chain(DefaultFilterChainer.java:21)
    at com.rsa.keymanager.transport.core.filter.DefaultTimeFilter.filter(DefaultTimeFilter.java:15)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:34)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:25)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
    at com.rsa.keymanager.edge.javax.servlet.DefaultFilterChain.doFilter(DefaultFilterChain.java:16)
    at com.rsa.keymanager.transport.core.filter.DefaultFilterChainer.chain(DefaultFilterChainer.java:21)
    at com.rsa.keymanager.transport.core.filter.DefaultServerAccessibilityFilter.doFilter(DefaultServerAccessibilityFilter.java:33)
    at com.rsa.keymanager.transport.core.filter.DefaultServerAccessibilityFilter.filter(DefaultServerAccessibilityFilter.java:28)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:34)
    at com.rsa.keymanager.transport.core.filter.EdgifierFilter.doFilter(EdgifierFilter.java:25)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:202)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:173)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:213)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:178)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:126)
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:105)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:107)
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:148)
    at org.apache.jk.server.JkCoyoteHandler.invoke(JkCoyoteHandler.java:199)
    at org.apache.jk.common.HandlerRequest.invoke(HandlerRequest.java:282)
    at org.apache.jk.common.ChannelSocket.invoke(ChannelSocket.java:767)
    at org.apache.jk.common.ChannelSocket.processConnection(ChannelSocket.java:697)
    at org.apache.jk.common.ChannelSocket$SocketConnection.runIt(ChannelSocket.java:889)
    at org.apache.tomcat.util.threads.ThreadPool$ControlRunnable.run(ThreadPool.java:684)
    at java.lang.Thread.run(Thread.java:595)
Authentication to RKM Administration GUI throws Java exception, e.g. "Identity does not exist: kmsadmin"
CauseThe RKM Administrator defined in the SQL database may not be created properly or has been mis-named.
ResolutionOne possible solution is to verify that the KMS Administrator account exists or is named correctly in the backend SQL Database.

For example, if you are using Microsoft SQL Database 2005, connect to the SQL Management Studio.

1. Connect to the SQL Server using SQL Management Studio.
2. Click the 'New Query' button.
3. Type :
    select * from AUTH_ACCESSMANAGER

4. Click the Execute button.
5. Verify that the search returns an object

Verify the following :

* That the IDENTITYNAME field matches that of the user you defined as your RKM Administrator during the product installation.
* Also ensure this user is both defined and within your Access Manager installation and has sufficient entitlements defined for access to the /KMS/ Application.

IF the Administrator name is incorrect as a result of your SQL Query, you can run this command to adjust the name of the Administrator user:

 update AUTH_ACCESSMANAGER SET ACCESSMANAGERUSER = 'correct_username' WHERE ACCESSMANAGERUSER = 'incorrect_username'

Replace 'correct_username'/'incorrect_username' with the values appropriate to your own installation.

For more information on the configuration or installation of RSA Key Manager consult the Installation Guide, available online at :

RSA Key Manager Installation Guide

Legacy Article IDa38541

Attachments

    Outcomes