This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Register Now
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SecurID® Governance & Lifecycle Knowledge Base

Find answers to your questions and identify resolutions for known issues with knowledge base articles written by SecurID Governance & Lifecycle experts.

Migration fails with 'ORA-19011: Character string buffer too small' error when upgrading RSA Identity Governance & Lifecycle 7.x

Article Number

000037254

Applies To

RSA Product Set: RSA Identity Governance & Lifecycle
RSA Version/Condition: 7.1.0, 7.1.1
 

Issue

The RSA Identity Governance & Lifecycle migration fails when upgrading to 7.1.x.

The following error message is logged to the migrate.log file located in:
   $AVEKSA_HOME/wildfly/standalone/log/migrate.log if the migration was started from the RSA Identity Governance & Lifecycle user interface, or,
   $AVEKSA_HOME/database/log/migrate.log if the migration was executed from the command line.
  
SQL/line#: 
/home/oracle/wildfly-10.1.0.Final/standalone/tmp/vfs/temp/tempcfc711f6815c3916/content-b6a949b558f78fb3/contents/
aveksa.war/WEB-INF/database/updates/7.1/ACM-72719.sql(2):
Start time [Mon Mar 11 14:07:55 CDT 2019]
update t_av_entitlementreviewdef set configuration = replace(configuration,
        '</rev:review-config>',
        '<rev:review-analysis-config>
          <rev:analyzeCategory>Violations</rev:analyzeCategory>
        </rev:review-analysis-config>
        </rev:review-config>')
        where review_type = 'U' and configuration not like '%<rev:review-analysis-config>%'
java.sql.SQLException: ORA-19011: Character string buffer too small

 

Cause

This issue occurs during the upgrade of Reviews if the configuration elements in part of the Review definition exceed 4000 characters (4K).  

Specifically, this may occur if the review contains an extensive explicit list of entitlements, roles, groups or data resources.
 

Resolution

This issue is resolved in the following RSA Identity Governance & Lifecycle versions and/or patch levels:

  • RSA Identity Governance & Lifecycle 7.1.0 P08
  • RSA Identity Governance & Lifecycle 7.1.1 P02
  • RSA Identity Governance & Lifecycle 7.2

Workaround

Identify which Review item(s) have configuration objects that exceed 4000 characters (see Notes).

The following options may be used to work around this issue.
  1. Delete the problem review.
  2. Edit the problem review and remove or reduce entitlements, roles, groups or data resources.
  3. Edit the problem review and filter by groupings instead of individual items.

For example, instead of listing all AD groups individually, select AD groups by business source.
 
Image descriptionImage description

Notes

The following SQL command may be used to identify which review has a configuration object that exceeds 4000 characters.
  
SELECT
    name
FROM
    t_av_entitlementreviewdef
WHERE
    length(xmltype.getclobval(configuration)) > 4000;

 
0 Likes
Was this article helpful? Yes No
No ratings

In this article

Version history
Last update:
‎2020-12-12 11:57 AM
Updated by:
Administrator Administrator

Related Content

© 2023 RSA Security LLC or its affiliates. All rights reserved.