000035833 - External authentication for BackOffice using LDAP fails after upgrade to RSA Adaptive Authentication 7.3 P3 (On Premise)

Document created by RSA Customer Support Employee on Jan 15, 2018
Version 1Show Document
  • View in full screen mode

Article Content

Article Number000035833
Applies ToRSA Product Set: Adaptive Authentication (OnPrem)
RSA Version/Condition: 7.3 P3
 
IssueExternal authentication using LDAP for BackOffice fails with the following error:

INFO [http-/3.32.215.245:8180-10] [] [] [stdout] - <2017-11-28 06:24:55,247 WARN [http-/3.32.215.245:8180-10] [] [] [org.springframework.context.support.ClassPathXmlApplicationContext] - <Exception encountered during context initialization - cancelling refresh attempt: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'initialDirContextFactoryActiveDirectory' defined in class path resource [AA-ExternalIdentityProvider.xml]: Cannot create inner bean 'java.lang.String#556759b0' of type [java.lang.String] while setting bean property 'password'; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'java.lang.String#556759b0' defined in class path resource [AA-ExternalIdentityProvider.xml]: Cannot create inner bean 'org.springframework.security.core.codec.Base64#278d4b5d' of type [org.springframework.security.core.codec.Base64] while setting constructor argument; nested exception is org.springframework.beans.factory.CannotLoadBeanClassException: Cannot find class [org.springframework.security.core.codec.Base64] for bean with name 'org.springframework.security.core.codec.Base64#278d4b5d' defined in class path resource [AA-ExternalIdentityProvider.xml]; nested exception is java.lang.ClassNotFoundException: org.springframework.security.core.codec.Base64>>
ResolutionThe Spring Upgrade that was done as part of RSA Adaptive Authentication 7.3 P2 release and the package for  org.springframework.security.core.codec.Base64 in spring-security-core-4.0.2.RELEASE has changed.
The workaround is to complete the following:
  1. Replace the org.springframework.security.core.codec.Base64 in AA-ExternalIdentityProvider.xml with org.springframework.security.crypto.codec.Base64.
  2. Copy all the Spring Update related .jars from the 7.3 P2 or 7.3 P3 installation from \rsa\dev_utils_7.3.0.2.0\external-identity-provider-sample-ldap to the external Identity Provider directory configured in BackOffice > Administration > BackOffice Applications > Authentication -> External Identity Provider Path.
  3. Restart the application servers clearing the temp directory after making the changes for the change to take effect.

Attachments

    Outcomes