Highlighted
Santiago Valued Contributor.
Valued Contributor.
293 views

User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

Hello,

I'm installing User Application using Identity_Manager_4.6_Linux.iso in a Red Hat Enterprise Linux Server 7.3 

The installation proccess I've followed is:

  • Tomcat installation 
  • OSP installation 
  • User Application installation in console mode
  • Usage of configupdate.sh in console mode
  • Start of tomcat server

After everything was installed and the database created successfully, I found the next error in catalina.log:

 

 

2019-08-08 09:59:08,139 [ERROR] VirtualDataAccess [RBPM] Error occurred checking the object type for: cn=admin-prov,ou=medical-idmsample,o=novell
2019-08-08 09:59:08,141 [ERROR] AuthorizationManagerService [RBPM] [Create_Domain_Administrator_Failure] Initiated by com.novell.idm.security.authorization.service.AuthorizationManagerService; Domain Administrator DN: cn=admin-prov,ou=medical-idmsample,o=novell; Error Message: Error occurred checking the object type for: cn=admin-prov,ou=medical-idmsample,o=novell

com.novell.srvprv.spi.vdata.exception.VirtualDataException: Error occurred checking the object type for: cn=admin-prov,ou=medical-idmsample,o=novell
        at com.novell.srvprv.impl.vdata.model.VirtualDataAccess.getObjectType(VirtualDataAccess.java:3945)
        at com.novell.srvprv.impl.vdata.model.VirtualDataModel.getObjectType(VirtualDataModel.java:1368)
        at com.novell.soa.util.LdapUtil.isTypeOf(LdapUtil.java:109)
        at com.novell.soa.util.LdapUtil.isContainer(LdapUtil.java:99)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.processAdministratorRequestInternal(AuthorizationManagerService.java:1079)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.addDomainAdministrator(AuthorizationManagerService.java:686)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.processDomainAdminInitial(AuthorizationManagerService.java:1367)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.initDomainAdmins(AuthorizationManagerService.java:1311)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.initInternal(AuthorizationManagerService.java:959)
        at com.novell.srvprv.impl.service.ServiceBase.init(ServiceBase.java:83)
        at com.novell.idm.security.authorization.service.AuthorizationManagerService.(AuthorizationManagerService.java:154)
        at com.novell.idm.security.authorization.service.AuthorizationManagerFactory.(AuthorizationManagerFactory.java:56)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
        at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
        at java.lang.Class.newInstance(Class.java:442)
        at com.novell.idm.security.authorization.AuthorizationManagerServiceFactory.(AuthorizationManagerServiceFactory.java:54)
        at com.netiq.idm.icfg.LandingPageItemAuthProvider.(LandingPageItemAuthProvider.java:79)
        at com.netiq.idm.icfg.IcfgSrvFactory.getLandingPageItemAuthMgr(IcfgSrvFactory.java:130)
        at com.novell.soa.persist.CustomDbUpdate.update(CustomDbUpdate.java:117)
        at com.sssw.fw.servlet.EboBootServlet.init(EboBootServlet.java:104)
        at com.sssw.portal.servlet.EboPortalBootServlet.init(EboPortalBootServlet.java:58)
        at javax.servlet.GenericServlet.init(GenericServlet.java:158)
        at org.apache.catalina.core.StandardWrapper.initServlet(StandardWrapper.java:1183)
        at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1099)
        at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:989)
        at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4913)
        at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5223)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
        at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:752)
        at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:728)
        at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:734)
        at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:952)
        at org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1823)
        at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
        at java.util.concurrent.FutureTask.run(FutureTask.java:266)
        at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
        at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
        at java.lang.Thread.run(Thread.java:745)
Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - NDS error: no such entry (-601)]; remaining name 'cn=admin-prov,ou=medical-idmsample,o=novell'
        at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)
        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)
        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)
        at com.sun.jndi.ldap.LdapCtx.c_getAttributes(LdapCtx.java:1329)
        at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_getAttributes(ComponentDirContext.java:235)
        at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.getAttributes(PartialCompositeDirContext.java:141)
        at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.getAttributes(PartialCompositeDirContext.java:129)
        at sun.reflect.GeneratedMethodAccessor140.invoke(Unknown Source)
        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
        at java.lang.reflect.Method.invoke(Method.java:498)
        at com.sssw.fw.directory.realm.impl.jndildap.EboLdapContextProxyHandler.invokeMethod(EboLdapContextProxyHandler.java:145)
        at com.sssw.fw.directory.realm.impl.jndildap.EboLdapContextProxyHandler.invoke(EboLdapContextProxyHandler.java:86)
        at com.sun.proxy.$Proxy67.getAttributes(Unknown Source)
        at com.novell.srvprv.impl.vdata.model.VirtualDataAccess.getObjectType(VirtualDataAccess.java:3882)
        at com.novell.srvprv.impl.vdata.model.VirtualDataAccess.getObjectType(VirtualDataAccess.java:3942)
        ... 39 more
2019-08-08 09:59:08,146 [ERROR] AuthorizationManagerFactory [RBPM] Failed to initialize RBPM authorization manager service.
com.novell.srvprv.spi.security.IDMAuthorizationException: Failed to initialize RBPM authorization manager service.
        at com.novell.idm.security.authorization.service.AuthorizationManagerFactory.(AuthorizationManagerFactory.java:58)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
        at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
        at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
        at java.lang.Class.newInstance(Class.java:442)
        at com.novell.idm.security.authorization.AuthorizationManagerServiceFactory.(AuthorizationManagerServiceFactory.java:54)
        at com.netiq.idm.icfg.LandingPageItemAuthProvider.(LandingPageItemAuthProvider.java:79)
        at com.netiq.idm.icfg.IcfgSrvFactory.getLandingPageItemAuthMgr(IcfgSrvFactory.java:130)
        at com.novell.soa.persist.CustomDbUpdate.update(CustomDbUpdate.java:117)
        at com.sssw.fw.servlet.EboBootServlet.init(EboBootServlet.java:104)
        at com.sssw.portal.servlet.EboPortalBootServlet.init(EboPortalBootServlet.java:58)
        at javax.servlet.GenericServlet.init(GenericServlet.java:158)
        at org.apache.catalina.core.StandardWrapper.initServlet(StandardWrapper.java:1183)
        at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1099)
        at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:989)
        at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4913)
        at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5223)
        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)
        at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:752)
        at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:728)
        at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:734)
        at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:952)
        at org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1823)
        at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)
        at java.util.concurrent.FutureTask.run(FutureTask.java:266)
        at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)
        at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)
        at java.lang.Thread.run(Thread.java:745)

 

 

After this, the server starts normally and when a user tries to login the following error is writed in catalina.out:

 

 

 

SEVERE: Servlet.service() for servlet [jsp] in context with path [/IDMProv] threw exception [An exception occurred processing JSP page /jsps/index.jsp at line 14

 

11:                     EbiPortalContext portalContext = EboFactory.createPortalContext(request, response, application);

12:                     EboPortalAggregationHelper.clearCurrentContainerPage(portalContext);

13:             EboPortalAggregationHelper.clearCurrentPage(portalContext);

14:                     EboPortalAggregationHelper.redirectToPortalHomePage(portalContext);

15: %>

 

 

Stacktrace:] with root cause

javax.naming.NameNotFoundException: [LDAP: error code 32 - NDS error: no such entry (-601)]; remaining name 'cn=admin-prov,ou=medical-idmsample,o=novell'

        at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3161)

        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3082)

        at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2888)

        at com.sun.jndi.ldap.LdapCtx.c_getAttributes(LdapCtx.java:1329)

        at com.sun.jndi.toolkit.ctx.ComponentDirContext.p_getAttributes(ComponentDirContext.java:235)

        at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.getAttributes(PartialCompositeDirContext.java:141)

        at com.sun.jndi.toolkit.ctx.PartialCompositeDirContext.getAttributes(PartialCompositeDirContext.java:129)

        at sun.reflect.GeneratedMethodAccessor142.invoke(Unknown Source)

        at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)

        at java.lang.reflect.Method.invoke(Method.java:498)

        at com.sssw.fw.directory.realm.impl.jndildap.EboLdapContextProxyHandler.invokeMethod(EboLdapContextProxyHandler.java:145)

        at com.sssw.fw.directory.realm.impl.jndildap.EboLdapContextProxyHandler.invoke(EboLdapContextProxyHandler.java:86)

        at com.sun.proxy.$Proxy67.getAttributes(Unknown Source)

        at com.novell.srvprv.impl.vdata.model.VirtualDataAccess.getObjectType(VirtualDataAccess.java:3882)

        at com.novell.srvprv.impl.vdata.model.VirtualDataAccess.getObjectType(VirtualDataAccess.java:3942)

        at com.novell.srvprv.impl.vdata.model.VirtualDataModel.getObjectType(VirtualDataModel.java:1368)

        at com.novell.soa.util.LdapUtil.isTypeOf(LdapUtil.java:109)

        at com.novell.soa.util.LdapUtil.isContainer(LdapUtil.java:99)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.processAdministratorRequestInternal(AuthorizationManagerService.java:1079)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.addDomainAdministrator(AuthorizationManagerService.java:686)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.processDomainAdminInitial(AuthorizationManagerService.java:1367)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.initDomainAdmins(AuthorizationManagerService.java:1311)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.initInternal(AuthorizationManagerService.java:959)

        at com.novell.srvprv.impl.service.ServiceBase.init(ServiceBase.java:83)

        at com.novell.idm.security.authorization.service.AuthorizationManagerService.(AuthorizationManagerService.java:154)

        at com.novell.idm.security.authorization.service.AuthorizationManagerFactory.(AuthorizationManagerFactory.java:56)

        at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

        at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)

        at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)

        at java.lang.reflect.Constructor.newInstance(Constructor.java:423)

        at java.lang.Class.newInstance(Class.java:442)

        at com.novell.idm.security.authorization.AuthorizationManagerServiceFactory.(AuthorizationManagerServiceFactory.java:54)

        at com.netiq.idm.icfg.LandingPageItemAuthProvider.(LandingPageItemAuthProvider.java:79)

        at com.netiq.idm.icfg.IcfgSrvFactory.getLandingPageItemAuthMgr(IcfgSrvFactory.java:130)

        at com.novell.soa.persist.CustomDbUpdate.update(CustomDbUpdate.java:117)

        at com.sssw.fw.servlet.EboBootServlet.init(EboBootServlet.java:104)

        at com.sssw.portal.servlet.EboPortalBootServlet.init(EboPortalBootServlet.java:58)

        at javax.servlet.GenericServlet.init(GenericServlet.java:158)

        at org.apache.catalina.core.StandardWrapper.initServlet(StandardWrapper.java:1183)

        at org.apache.catalina.core.StandardWrapper.loadServlet(StandardWrapper.java:1099)

        at org.apache.catalina.core.StandardWrapper.load(StandardWrapper.java:989)

        at org.apache.catalina.core.StandardContext.loadOnStartup(StandardContext.java:4913)

        at org.apache.catalina.core.StandardContext.startInternal(StandardContext.java:5223)

        at org.apache.catalina.util.LifecycleBase.start(LifecycleBase.java:150)

        at org.apache.catalina.core.ContainerBase.addChildInternal(ContainerBase.java:752)

        at org.apache.catalina.core.ContainerBase.addChild(ContainerBase.java:728)

        at org.apache.catalina.core.StandardHost.addChild(StandardHost.java:734)

        at org.apache.catalina.startup.HostConfig.deployWAR(HostConfig.java:952)

        at org.apache.catalina.startup.HostConfig$DeployWar.run(HostConfig.java:1823)

        at java.util.concurrent.Executors$RunnableAdapter.call(Executors.java:511)

        at java.util.concurrent.FutureTask.run(FutureTask.java:266)

        at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1142)

        at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:617)

        at java.lang.Thread.run(Thread.java:745)

 

 

I tried the following aproaches to solve this problem:

  • Excecution of the following script based on TiquetId 7000677:

update SECURITYPERMISSIONS set principalname = 'LDAPRealm\cn=admin,ou=srv,o=grp_dav' WHERE principalname = 'cn=admin,ou=medical-idmsample,o=novell'

update SECURITYPERMISSIONS set principalname = 'LDAPRealm\cn=admin-prov,ou=srv,o=grp_dav' WHERE principalname = 'cn=admin-prov,ou=medical-idmsample,o=novell'

update SECURITYPERMISSIONS set principalname = 'LDAPRealm\ou=srv,o=grp_dav' WHERE principalname = 'ou=medical-idmsample,o=novell'

  • ism-configuration.properties file totally configurated (There are no hint of the admin-prov user )
  • Fully reinstallation of User Application 
  • New generation of tables using liquibase.jar (With no errors)

After I've done all of this, nothing seams to solve the problem

Any help will be apreciated. Thanks in advance.

Labels (1)
0 Likes
1 Solution

Accepted Solutions
jimgoodall Respected Contributor.
Respected Contributor.

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

Yep - the installer doesn't insert a value for one of the config settings, (which irritatingly I can't remember) so user app uses the default value that was hard coded in by the Novell / NetIQ development team.

So no surprise that we get a -601 for the user in o=novell 😄

I raised an SR to get this resolved - I'm pretty sure the fix was to run the install using the GUI.

View solution in original post

5 Replies
jimgoodall Respected Contributor.
Respected Contributor.

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

I had this problem a while back.

Did you install using the command line installer?

Try reinstalling using the GUI install rather than the command line.

There is a setting that gets missed from the ism-configuration.properties - but I can't remember which setting it was at the moment.

Hope this helps.

Jim

Knowledge Partner
Knowledge Partner

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

In the original post, the problem is actually that the account used for LDAP auth of the UA itself either does not exist or that the DN is incorrect.

 

Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 - NDS error: no such entry (-601)]; remaining name 'cn=admin-prov,ou=medical-idmsample,o=novell'

 

601 is object does not exist.

 

0 Likes
jimgoodall Respected Contributor.
Respected Contributor.

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

Yep - the installer doesn't insert a value for one of the config settings, (which irritatingly I can't remember) so user app uses the default value that was hard coded in by the Novell / NetIQ development team.

So no surprise that we get a -601 for the user in o=novell 😄

I raised an SR to get this resolved - I'm pretty sure the fix was to run the install using the GUI.

View solution in original post

Santiago Valued Contributor.
Valued Contributor.

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution

@jimgoodall , @geoffc Thanks so much! It solve the problem.

jimgoodall Respected Contributor.
Respected Contributor.

Re: User Application instalation error 'cn=admin-prov,ou=medical-idmsample,o=novell' not found

Jump to solution
You are most welcome, glad to have been of help!
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.