ratclma Absent Member.
Absent Member.
1196 views

Change Password 5015 errors protected by NAM


Hi,

Setup:
SSPR 3.3.1.2 on windows 2012
Protected by NAM 4.1
NAM path-based proxy service for /sspr to port 80 on the SSPR server
3 protected resources:
resource 1 - /sspr/public/* - public resource i.e. no authentication
contract
resource 2 - /sspr/private/* - protected resource by authentication
contract
resource 3 - /sspr/private/admin/* and /sspr/private/config/* -
protected by authentication contract and authorisation policy to ensure
only sspr-admin group have rights to manage admin components.
The authentication contract is configured to call the CommandServlet
checkexpire during login, but the issue below occurs whether Change
Password is accessed by the CommandServlet call or if user reaches
Change Password via ForgottenPassword.

Using Change Password and testing password policy by trying multiple
passwords to confirm the password checker is correctly checking password
conforms with 2008 complexity and not accepting passwords which are in
the wordlist etc.
When accessing change password locally on the SSPR server (i.e. not
using NAM) can try 50 different passwords without issue.
When accessing change password via a NAM protected path-based url e.g.
https://qa.example.biz/sspr/public/ChangePassword the first few
passwords will be checked successfully then the system will report a
5015 error like below:

18 March 2016 21:06:55 GMT, ERROR, rest.RestCheckPasswordServer,
{bhl,PST0840} 5015 ERROR_UNKNOWN (unexpected error executing web
service: null) [10.128.193.12] (stacktrace follows)
java.lang.ArrayIndexOutOfBoundsException

18 March 2016 21:06:44 GMT, ERROR, rest.RestCheckPasswordServer,
{bhl,PST0840} 5015 ERROR_UNKNOWN (unexpected error executing web
service: null) [10.128.193.12] (stacktrace follows)
java.lang.ArrayIndexOutOfBoundsException

Do I need whitelist redirects?

Would I be better to not protect SSPR by NAM or is there additional
configuration I might be missing in NAM or SSPR to make the two to work
together?
Thanks
Mark


--
ratclma
------------------------------------------------------------------------
ratclma's Profile: https://forums.netiq.com/member.php?userid=7886
View this thread: https://forums.netiq.com/showthread.php?t=55574

0 Likes
5 Replies
Micro Focus Contributor
Micro Focus Contributor

Re: Change Password 5015 errors protected by NAM


SSPR protected by NAM should be fine and is probably unrelated to your
issue.

You will need to post more bits of your log or open an SR.


--
jrivard
------------------------------------------------------------------------
jrivard's Profile: https://forums.netiq.com/member.php?userid=541
View this thread: https://forums.netiq.com/showthread.php?t=55574

0 Likes
ratclma Absent Member.
Absent Member.

Re: Change Password 5015 errors protected by NAM


jrivard;266216 Wrote:
> SSPR protected by NAM should be fine and is probably unrelated to your
> issue.
>
> You will need to post more bits of your log or open an SR.


Thanks,so there is nothing wrong with the proxy service and protected
resources config I have outlined? I cannot get the error if I try
ChangePassword directly on the SSPR server (i.e. without NAM).


--
ratclma
------------------------------------------------------------------------
ratclma's Profile: https://forums.netiq.com/member.php?userid=7886
View this thread: https://forums.netiq.com/showthread.php?t=55574

0 Likes
keil0008 Absent Member.
Absent Member.

Re: Change Password 5015 errors protected by NAM

Did you get any answer to this. My instance just started playing up out of nowhere today with the same error. Any help appreciated.

2016-11-16T14:40:57Z, TRACE, http.PwmRequest, {132n7,a1987693} POST request for: /sspr/private/ChangePassword [129.127.46.85]
processAction='change'
password2=*hidden*
password1=*hidden*
pwmFormID='x2pokoK0jUhGBa41fuxtPuwEkRM9Q1pL1586b5418c6ZKLFr'
2016-11-16T14:40:57Z, FATAL, servlet.PwmServlet, 5015 ERROR_UNKNOWN (unexpected error processing request: null
java.lang.ArrayIndexOutOfBoundsException
at java.lang.Character.codePointAtImpl(Character.java:4946)
at java.lang.Character.codePointAt(Character.java:4909)
at password.pwm.util.PwmPasswordRuleValidator.basicSyntaxRuleChecks(PwmPasswordRuleValidator.java:754)
at password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:200)
at password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:147)
at password.pwm.util.PwmPasswordRuleValidator.validate(PwmPasswordRuleValidator.java:129)
at password.pwm.util.PwmPasswordRuleValidator.testPassword(PwmPasswordRuleValidator.java:82)
at password.pwm.http.servlet.ChangePasswordServlet.handleChangeRequest(ChangePasswordServlet.java:217)
at password.pwm.http.servlet.ChangePasswordServlet.processAction(ChangePasswordServlet.java:159)
at password.pwm.http.servlet.PwmServlet.handleRequest(PwmServlet.java:111)
at password.pwm.http.servlet.PwmServlet.doPost(PwmServlet.java:67)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.AuthenticationFilter.processAuthenticatedSession(AuthenticationFilter.java:156)
at password.pwm.http.filter.AuthenticationFilter.processFilter(AuthenticationFilter.java:97)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.SessionFilter.processFilter(SessionFilter.java:86)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.ApplicationModeFilter.processFilter(ApplicationModeFilter.java:69)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.RequestInitializationFilter.doFilter(RequestInitializationFilter.java:94)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.GZIPFilter.doFilter(GZIPFilter.java:68)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607)
at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:785)

2016-11-16T14:40:57Z, ERROR, http.PwmRequest, {132n7,a1987693} 5015 ERROR_UNKNOWN (unexpected error processing request: null [129.127.46.85]
java.lang.ArrayIndexOutOfBoundsException
at java.lang.Character.codePointAtImpl(Character.java:4946)
at java.lang.Character.codePointAt(Character.java:4909)
at password.pwm.util.PwmPasswordRuleValidator.basicSyntaxRuleChecks(PwmPasswordRuleValidator.java:754)
at password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:200)
at password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:147)
at password.pwm.util.PwmPasswordRuleValidator.validate(PwmPasswordRuleValidator.java:129)
at password.pwm.util.PwmPasswordRuleValidator.testPassword(PwmPasswordRuleValidator.java:82)
at password.pwm.http.servlet.ChangePasswordServlet.handleChangeRequest(ChangePasswordServlet.java:217)
at password.pwm.http.servlet.ChangePasswordServlet.processAction(ChangePasswordServlet.java:159)
at password.pwm.http.servlet.PwmServlet.handleRequest(PwmServlet.java:111)
at password.pwm.http.servlet.PwmServlet.doPost(PwmServlet.java:67)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.AuthenticationFilter.processAuthenticatedSession(AuthenticationFilter.java:156)
at password.pwm.http.filter.AuthenticationFilter.processFilter(AuthenticationFilter.java:97)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.SessionFilter.processFilter(SessionFilter.java:86)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
at password.pwm.http.filter.ApplicationModeFilter.processFilter(ApplicationModeFilter.java:69)
at password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.RequestInitializationFilter.doFilter(RequestInitializationFilter.java:94)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at password.pwm.http.filter.GZIPFilter.doFilter(GZIPFilter.java:68)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
at org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
at org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040)
at org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607)
at org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
at java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
at org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
at java.lang.Thread.run(Thread.java:785)
)
0 Likes
Knowledge Partner
Knowledge Partner

Re: Change Password 5015 errors protected by NAM

On 11/15/2016 11:46 PM, keil0008 wrote:
>
> Did you get any answer to this. My instance just started playing up out
> of nowhere today with the same error. Any help appreciated.


5015 is a generic Help, I know something broke, but not what broke message.

Reading the stack trace, it gets a Index out of bounds error, as it is
checking a password strength. (Top down, look at class names, usually
informative, enough to guess at what is likely happening).

So sounds like someone entered a password that SSPR cannot validate for
some reason. Which is kinda wierd. If you can trace back who it was,
and contact/ask what they tried that would be cool to know.


>>
>> 2016-11-16T14:40:57Z, TRACE, http.PwmRequest, {132n7,a1987693} POST
>> request for: /sspr/private/ChangePassword [129.127.46.85]
>> processAction='change'
>> password2=*hidden*
>> password1=*hidden*
>> pwmFormID='x2pokoK0jUhGBa41fuxtPuwEkRM9Q1pL1586b5418c6ZKLFr'
>> 2016-11-16T14:40:57Z, FATAL, servlet.PwmServlet, 5015 ERROR_UNKNOWN
>> (unexpected error processing request: null
>> java.lang.ArrayIndexOutOfBoundsException
>> at java.lang.Character.codePointAtImpl(Character.java:4946)
>> at java.lang.Character.codePointAt(Character.java:4909)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.basicSyntaxRuleChecks(PwmPasswordRuleValidator.java:754)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:200)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:147)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.validate(PwmPasswordRuleValidator.java:129)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.testPassword(PwmPasswordRuleValidator.java:82)
>> at
>> password.pwm.http.servlet.ChangePasswordServlet.handleChangeRequest(ChangePasswordServlet.java:217)
>> at
>> password.pwm.http.servlet.ChangePasswordServlet.processAction(ChangePasswordServlet.java:159)
>> at
>> password.pwm.http.servlet.PwmServlet.handleRequest(PwmServlet.java:111)
>> at
>> password.pwm.http.servlet.PwmServlet.doPost(PwmServlet.java:67)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.AuthenticationFilter.processAuthenticatedSession(AuthenticationFilter.java:156)
>> at
>> password.pwm.http.filter.AuthenticationFilter.processFilter(AuthenticationFilter.java:97)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.SessionFilter.processFilter(SessionFilter.java:86)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.ApplicationModeFilter.processFilter(ApplicationModeFilter.java:69)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.RequestInitializationFilter.doFilter(RequestInitializationFilter.java:94)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.GZIPFilter.doFilter(GZIPFilter.java:68)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at
>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>> at
>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040)
>> at
>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607)
>> at
>> org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
>> at
>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
>> at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
>> at
>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>> at java.lang.Thread.run(Thread.java:785)
>>
>> 2016-11-16T14:40:57Z, ERROR, http.PwmRequest, {132n7,a1987693} 5015
>> ERROR_UNKNOWN (unexpected error processing request: null [129.127.46.85]
>> java.lang.ArrayIndexOutOfBoundsException
>> at java.lang.Character.codePointAtImpl(Character.java:4946)
>> at java.lang.Character.codePointAt(Character.java:4909)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.basicSyntaxRuleChecks(PwmPasswordRuleValidator.java:754)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:200)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.internalPwmPolicyValidator(PwmPasswordRuleValidator.java:147)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.validate(PwmPasswordRuleValidator.java:129)
>> at
>> password.pwm.util.PwmPasswordRuleValidator.testPassword(PwmPasswordRuleValidator.java:82)
>> at
>> password.pwm.http.servlet.ChangePasswordServlet.handleChangeRequest(ChangePasswordServlet.java:217)
>> at
>> password.pwm.http.servlet.ChangePasswordServlet.processAction(ChangePasswordServlet.java:159)
>> at
>> password.pwm.http.servlet.PwmServlet.handleRequest(PwmServlet.java:111)
>> at
>> password.pwm.http.servlet.PwmServlet.doPost(PwmServlet.java:67)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:646)
>> at javax.servlet.http.HttpServlet.service(HttpServlet.java:727)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:303)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> org.apache.tomcat.websocket.server.WsFilter.doFilter(WsFilter.java:52)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.AuthenticationFilter.processAuthenticatedSession(AuthenticationFilter.java:156)
>> at
>> password.pwm.http.filter.AuthenticationFilter.processFilter(AuthenticationFilter.java:97)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.SessionFilter.processFilter(SessionFilter.java:86)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.AbstractPwmFilter$PwmFilterChain.doFilter(AbstractPwmFilter.java:100)
>> at
>> password.pwm.http.filter.ApplicationModeFilter.processFilter(ApplicationModeFilter.java:69)
>> at
>> password.pwm.http.filter.AbstractPwmFilter.doFilter(AbstractPwmFilter.java:62)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.RequestInitializationFilter.doFilter(RequestInitializationFilter.java:94)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> password.pwm.http.filter.GZIPFilter.doFilter(GZIPFilter.java:68)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:241)
>> at
>> org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:208)
>> at
>> org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:220)
>> at
>> org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:122)
>> at
>> org.apache.catalina.authenticator.AuthenticatorBase.invoke(AuthenticatorBase.java:501)
>> at
>> org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:171)
>> at
>> org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
>> at
>> org.apache.catalina.valves.AccessLogValve.invoke(AccessLogValve.java:950)
>> at
>> org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:116)
>> at
>> org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:408)
>> at
>> org.apache.coyote.http11.AbstractHttp11Processor.process(AbstractHttp11Processor.java:1040)
>> at
>> org.apache.coyote.AbstractProtocol$AbstractConnectionHandler.process(AbstractProtocol.java:607)
>> at
>> org.apache.tomcat.util.net.JIoEndpoint$SocketProcessor.run(JIoEndpoint.java:316)
>> at
>> java.util.concurrent.ThreadPoolExecutor.runWorker(ThreadPoolExecutor.java:1153)
>> at
>> java.util.concurrent.ThreadPoolExecutor$Worker.run(ThreadPoolExecutor.java:628)
>> at
>> org.apache.tomcat.util.threads.TaskThread$WrappingRunnable.run(TaskThread.java:61)
>> at java.lang.Thread.run(Thread.java:785)
>> )
>>

>
>


0 Likes
Highlighted
ratclma Absent Member.
Absent Member.

Re: Change Password 5015 errors protected by NAM


Hi,
Yes this was resolved by an update to SSPR for our particular issue
when trying to set strong passwords.
What version of SSPR are you using? this is the fix
•ArrayIndexOutOfBoundsException when password policy has "Maximum
Consecutive Characters" set (980934) which was resolved in SSPR 3.3.1
HF4 (3.3.1.4)
Regards
Mark
geoffc;272479 Wrote:
> On 11/15/2016 11:46 PM, keil0008 wrote:
> >
> > Did you get any answer to this. My instance just started playing up

> out
> > of nowhere today with the same error. Any help appreciated.

>
> 5015 is a generic Help, I know something broke, but not what broke
> message.
>
> Reading the stack trace, it gets a Index out of bounds error, as it is
> checking a password strength. (Top down, look at class names, usually
> informative, enough to guess at what is likely happening).
>
> So sounds like someone entered a password that SSPR cannot validate for
> some reason. Which is kinda wierd. If you can trace back who it was,
> and contact/ask what they tried that would be cool to know.
>
>
> >



--
ratclma
------------------------------------------------------------------------
ratclma's Profile: https://forums.netiq.com/member.php?userid=7886
View this thread: https://forums.netiq.com/showthread.php?t=55574

0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.