Anonymous_User Absent Member.
Absent Member.
750 views

error by loging to landing page (Aquamarine)


Hi there,

i have installed the home and provisioning dashboard. By login to
landing page the following error occured.

com.netiq.common.i18n.LocalizedException:Permission Index search by DN
anomalously returned multiple results.

When i click the message away i can work.

Have anyone an idea what happend or a solution.

many thanks

Thomas


--
KahlerThomas
------------------------------------------------------------------------
KahlerThomas's Profile: https://forums.netiq.com/member.php?userid=1030
View this thread: https://forums.netiq.com/showthread.php?t=49775

Labels (1)
0 Likes
8 Replies
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)

On 01/23/2014 04:44 AM, KahlerThomas wrote:
>
> Hi there,
>
> i have installed the home and provisioning dashboard. By login to
> landing page the following error occured.
>
> com.netiq.common.i18n.LocalizedException:Permission Index search by DN
> anomalously returned multiple results.
>
> When i click the message away i can work.
>
> Have anyone an idea what happend or a solution.
>
> many thanks
>
> Thomas
>
>

Greetings Thomas,

1) What language are you using in our browser? Also, what is the default
language set to for the User Application?

2) You get this message when you login to the /landing, not when you are
searching for a Permission to request?

3) Are there any errors in your server.log

--

Sincerely,
Steven Williams
Lead Software Engineer
NetIQ
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)


Hi Steven,

my browser language is german an the preferred locale of my user uaadmin
is german too.

I get this error when logged in to the landing page and when i search
for a permission.

The jboss log list this error:

2014-01-23 12:52:11,960 ERROR
[com.netiq.idm.rest.access.PermissionAssignmentService]
(http-0.0.0.0-8180-4) [RBPM] Internal exception occurred processing REST
service
com.netiq.common.i18n.LocalizedException: Permission Index search by DN
anomalously returned multiple results.
at
com.netiq.idm.cis.PermIndex.getPermissionWithDn(PermIndex.java:493)
at
com.netiq.idm.rest.access.PermissionAssignmentService.getLoggedInUserPermissionAssignmentsFromIDV(PermissionAssignmentService.java:882)
at
com.netiq.idm.rest.access.PermissionAssignmentService.getLoggedInUserPermissionAssignments(PermissionAssignmentService.java:193)
at sun.reflect.GeneratedMethodAccessor760.invoke(Unknown
Source)
at
sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:606)
at
com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$ResponseOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:168)
at
com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:67)
at
com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:259)
at
com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:83)
at
com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:133)
at
com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:71)
at
com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:990)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:941)
at
com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:932)
at
com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:384)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:451)
at
com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:632)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.common.auth.JAASFilter.doFilter(JAASFilter.java:104)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.common.auth.saml.AuthTokenGeneratorFilter.doFilter(AuthTokenGeneratorFilter.java:118)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.common.auth.sso.SSOFilter.doFilter(SSOFilter.java:102)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.soa.common.i18n.BestLocaleServletFilter.doFilter(BestLocaleServletFilter.java:242)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.common.ForceNoCacheFilter.doFilter(ForceNoCacheFilter.java:62)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
com.novell.common.HttpSecurityHeadersFilter.doFilter(HttpSecurityHeadersFilter.java:119)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
at
org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at
org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at
org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
at
org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at
org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
at
org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
at
org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
at
org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
at
org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at
org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at
org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
at
org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at
org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
at
org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
at
org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
at
org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:744)


thanks for your help

Thomas


--
KahlerThomas
------------------------------------------------------------------------
KahlerThomas's Profile: https://forums.netiq.com/member.php?userid=1030
View this thread: https://forums.netiq.com/showthread.php?t=49775

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)

On 01/23/2014 07:04 AM, KahlerThomas wrote:
>
> Hi Steven,
>
> my browser language is german an the preferred locale of my user uaadmin
> is german too.
>
> I get this error when logged in to the landing page and when i search
> for a permission.
>
> The jboss log list this error:
>
> 2014-01-23 12:52:11,960 ERROR
> [com.netiq.idm.rest.access.PermissionAssignmentService]
> (http-0.0.0.0-8180-4) [RBPM] Internal exception occurred processing REST
> service
> com.netiq.common.i18n.LocalizedException: Permission Index search by DN
> anomalously returned multiple results.
> at
> com.netiq.idm.cis.PermIndex.getPermissionWithDn(PermIndex.java:493)
> at
> com.netiq.idm.rest.access.PermissionAssignmentService.getLoggedInUserPermissionAssignmentsFromIDV(PermissionAssignmentService.java:882)
> at
> com.netiq.idm.rest.access.PermissionAssignmentService.getLoggedInUserPermissionAssignments(PermissionAssignmentService.java:193)
> at sun.reflect.GeneratedMethodAccessor760.invoke(Unknown
> Source)
> at
> sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
> at java.lang.reflect.Method.invoke(Method.java:606)
> at
> com.sun.jersey.server.impl.model.method.dispatch.AbstractResourceMethodDispatchProvider$ResponseOutInvoker._dispatch(AbstractResourceMethodDispatchProvider.java:168)
> at
> com.sun.jersey.server.impl.model.method.dispatch.ResourceJavaMethodDispatcher.dispatch(ResourceJavaMethodDispatcher.java:67)
> at
> com.sun.jersey.server.impl.uri.rules.HttpMethodRule.accept(HttpMethodRule.java:259)
> at
> com.sun.jersey.server.impl.uri.rules.ResourceClassRule.accept(ResourceClassRule.java:83)
> at
> com.sun.jersey.server.impl.uri.rules.RightHandPathRule.accept(RightHandPathRule.java:133)
> at
> com.sun.jersey.server.impl.uri.rules.RootResourceClassesRule.accept(RootResourceClassesRule.java:71)
> at
> com.sun.jersey.server.impl.application.WebApplicationImpl._handleRequest(WebApplicationImpl.java:990)
> at
> com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:941)
> at
> com.sun.jersey.server.impl.application.WebApplicationImpl.handleRequest(WebApplicationImpl.java:932)
> at
> com.sun.jersey.spi.container.servlet.WebComponent.service(WebComponent.java:384)
> at
> com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:451)
> at
> com.sun.jersey.spi.container.servlet.ServletContainer.service(ServletContainer.java:632)
> at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.common.auth.JAASFilter.doFilter(JAASFilter.java:104)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.common.auth.saml.AuthTokenGeneratorFilter.doFilter(AuthTokenGeneratorFilter.java:118)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.common.auth.sso.SSOFilter.doFilter(SSOFilter.java:102)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.soa.common.i18n.BestLocaleServletFilter.doFilter(BestLocaleServletFilter.java:242)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.common.ForceNoCacheFilter.doFilter(ForceNoCacheFilter.java:62)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> com.novell.common.HttpSecurityHeadersFilter.doFilter(HttpSecurityHeadersFilter.java:119)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
> at
> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
> at
> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
> at
> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
> at
> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
> at
> org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:190)
> at
> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:433)
> at
> org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:92)
> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
> at
> org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
> at
> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
> at
> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
> at
> org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
> at
> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
> at
> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
> at
> org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:829)
> at
> org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:598)
> at
> org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
> at java.lang.Thread.run(Thread.java:744)
>
>
> thanks for your help
>
> Thomas
>
>

Greetings Thomas,

1) When you are searching, is it a Role, Resource, or Workflow that you
are searching for?

2) The error is happening because the Permission Index has at least two
(2) of the exact same DN matching what you are searching for. Which
should not happen.

Did you delete and re-create the object (from #1) since you set-up HPD?

Did you re-deploy your Driver?

Trying to understand


--

Sincerely,
Steven Williams
Lead Software Engineer
NetIQ
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)


Hi Steven,

the source of error was a resource. After looking at my AppConfig
Containers (RoleDefs and ResourceDefs) i can´t see any double DN Entries
in all attributes. In which attribut can i see the Permission Index?
So i decide to delete my resources. I could do that because my server is
only a test server for HPD. The error is now gone but what can i do when
my server is a product server? In this situation i can´t easy delete
resoruces or roles.

Best regards
Thomas


--
KahlerThomas
------------------------------------------------------------------------
KahlerThomas's Profile: https://forums.netiq.com/member.php?userid=1030
View this thread: https://forums.netiq.com/showthread.php?t=49775

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)

On 01/24/2014 04:07 AM, KahlerThomas wrote:
>
> Hi Steven,
>
> the source of error was a resource. After looking at my AppConfig
> Containers (RoleDefs and ResourceDefs) i can�t see any double DN Entries
> in all attributes. In which attribut can i see the Permission Index?
> So i decide to delete my resources. I could do that because my server is
> only a test server for HPD. The error is now gone but what can i do when
> my server is a product server? In this situation i can�t easy delete
> resoruces or roles.
>
> Best regards
> Thomas
>
>

Greetings Thomas,
If this happens again,

a) We need to know what was done (if you can remember)
b) Stop JBoss, Delete the Permission Index, restart JBoss. The
Permission Index will get recreated during the start-up. It will not
effect your Vault or anything else.
c) If the problem continues, open a Service Request (at which time I
will get directly involved)

--

Sincerely,
Steven Williams
Lead Software Engineer
NetIQ
0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)


Steven Williams;239673 Wrote:
> On 01/24/2014 04:07 AM, KahlerThomas wrote:
> >
> > Hi Steven,
> >
> > the source of error was a resource. After looking at my AppConfig
> > Containers (RoleDefs and ResourceDefs) i can�t see any double DN

> Entries
> > in all attributes. In which attribut can i see the Permission Index?
> > So i decide to delete my resources. I could do that because my server

> is
> > only a test server for HPD. The error is now gone but what can i do

> when
> > my server is a product server? In this situation i can�t easy

> delete
> > resoruces or roles.
> >
> > Best regards
> > Thomas
> >
> >

> Greetings Thomas,
> If this happens again,
>
> a) We need to know what was done (if you can remember)
> b) Stop JBoss, Delete the Permission Index, restart JBoss. The
> Permission Index will get recreated during the start-up. It will not
> effect your Vault or anything else.
> c) If the problem continues, open a Service Request (at which time I
> will get directly involved)
>
> --
>
> Sincerely,
> Steven Williams
> Lead Software Engineer
> NetIQ


Hi there

I've the same problem. How do I delete the permission index?

thx
Andreas


--
afuhrmann
------------------------------------------------------------------------
afuhrmann's Profile: https://forums.netiq.com/member.php?userid=5569
View this thread: https://forums.netiq.com/showthread.php?t=49775

0 Likes
Anonymous_User Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)

On 08/07/2014 09:46 AM, afuhrmann wrote:
>
> Steven Williams;239673 Wrote:
>> On 01/24/2014 04:07 AM, KahlerThomas wrote:
>>>
>>> Hi Steven,
>>>
>>> the source of error was a resource. After looking at my AppConfig
>>> Containers (RoleDefs and ResourceDefs) i can�t see any double DN

>> Entries
>>> in all attributes. In which attribut can i see the Permission Index?
>>> So i decide to delete my resources. I could do that because my server

>> is
>>> only a test server for HPD. The error is now gone but what can i do

>> when
>>> my server is a product server? In this situation i can�t easy

>> delete
>>> resoruces or roles.
>>>
>>> Best regards
>>> Thomas
>>>
>>>

>> Greetings Thomas,
>> If this happens again,
>>
>> a) We need to know what was done (if you can remember)
>> b) Stop JBoss, Delete the Permission Index, restart JBoss. The
>> Permission Index will get recreated during the start-up. It will not
>> effect your Vault or anything else.
>> c) If the problem continues, open a Service Request (at which time I
>> will get directly involved)
>>
>> --
>>
>> Sincerely,
>> Steven Williams
>> Lead Software Engineer
>> NetIQ

>
> Hi there
>
> I've the same problem. How do I delete the permission index?
>
> thx
> Andreas
>
>

Greetings,

1) Stop JBoss

2.a) In a terminal as root navigate to the /tmp/permindex folder
2.b) Issue rm -rf *

3) Clean out the temp and work directories under JBoss
**Note I highly recommend cleaning out the these two (2) directories
before you each start of JBoss. JBoss 5.x does not clean them out like
version 4.x did so you can have multiple problems as a result.

As a result I have added lines similar to the following to the top of my
start-jboss.sh file

rm -rf /opt/novell/idm/rbpm/jboss/server/IDMProv/tmp/*
rm -rf /opt/novell/idm/rbpm/jboss/server/IDMProv/work/jboss.web/*


They are right after #!/bin/sh and before the JAVA_HOME

4) Start JBoss


During the start-up the Permission Index will be re-created.

--

Sincerely,
Steven Williams
Lead Software Engineer
NetIQ
0 Likes
nvldk Absent Member.
Absent Member.

Re: error by loging to landing page (Aquamarine)


Hi Steven,

We are also facing the same issue.
2016-12-21 11:50:57,387 [http-bio-443-exec-1244] ERROR
com.netiq.idm.rest.access.PermissionAssignmentService- [RBPM] Internal
exception occurred processing REST service
com.netiq.common.i18n.LocalizedException: Permission Index search by DN
anomalously returned multiple results.

We have 2 roles with same name but they are stored in different levels.
Example:

On Level 20 - AccessToServer001

On Level 10 - AccessToServer001

Do we get above error because the CN is not unique across the rolesdef
container? Please let us know.

Thanks
-dk


--
nvldk
------------------------------------------------------------------------
nvldk's Profile: https://forums.netiq.com/member.php?userid=8443
View this thread: https://forums.netiq.com/showthread.php?t=49775

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.