2 Websphere 8.0.0.5 servers :
1 Dmgr + appserver
1 appserver that I federated to the Dmgr
This last one won't synchronize
I have 2 errors in the nodeagent log : ADMS0005E and ADMS0036E
[15/07/13 15:51:49:235 CEST] 0000001e NodeSyncTask A ADMS0036E: La synchronisation de la configuration n'a pas abouti.
[15/07/13 15:51:51:595 CEST] 0000001f NodeSync E ADMS0005E: Le système ne peut pas générer de demande de synchronisation : javax.management.JMRuntimeException: ADMN0022E: L'accès est refusé pour l'opération getRepositoryEpoch sur le MBean ConfigRepository en raison de justificatifs insuffisants ou vides.
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.handleAdminFault(SOAPConnectorClient.java:948)
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.invokeTemplateOnce(SOAPConnectorClient.java:916)
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.invokeTemplate(SOAPConnectorClient.java:682)
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.invokeTemplate(SOAPConnectorClient.java:672)
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.invoke(SOAPConnectorClient.java:658)
at com.ibm.ws.management.connector.soap.SOAPConnectorClient.invoke(SOAPConnectorClient.java:480)
at $Proxy2.invoke(Unknown Source)
at com.ibm.ws.management.AdminClientImpl.invoke(AdminClientImpl.java:224)
at com.ibm.ws.management.sync.NodeSync.getCellRepositoryEpoch(NodeSync.java:410)
at com.ibm.ws.management.sync.NodeSyncTask.doSync(NodeSyncTask.java:248)
at com.ibm.ws.management.sync.NodeSyncTask.run(NodeSyncTask.java:157)
at java.lang.Thread.run(Thread.java:772)
And in the Dmgr log I have : SECJ0305I
[15/07/13 16:13:16:384 CEST] 000002bc RoleBasedAuth A SECJ0305I: Echec du contrôle d'autorisation basée sur le rôle pour admin-authz opérations StatusCache : placeReport:com.ibm.ws.management.status.StatusReport. L'utilisateur UNAUTHENTICATED (ID unique : unauthenticated) n'a pas reçu un des rôles requis suivants : operator, administrator.
FFDC in Dmgr's SystemOut.log :
[15/07/13 17:53:50:217 CEST] 0000002f FfdcProvider W com.ibm.ws.ffdc.impl.FfdcProvider logIncident FFDC1003I: Incident FFDC émis sur C:\IBM\WebSphere\AppServer\profiles\Dmgr01\logs\ffdc\dmgr_67421e5f_13.07.15_17.53.50.2011205009599192654889.txt com.ibm.ws.security.token.WSCredentialTokenMapper.createPropagationTokenBeforeAuthenticatedCallerSet 1691FFDC is "first failure data capure" and you can find more information about it here
I found a lot of information on a similar problem in Websphere 6 but this is 8. And it was related to automatic key generation. It is unchecked in my configuration.
I found this :
http://www-01.ibm.com/support/docview.wss?uid=swg21458372
I have HMGR0149E
Validation of LTPA token failed due to invalid keys or token
It seems that my LTPA (Lightweight Third Party Authentication is an authentication technology) is not valid, but how do I check the validity ?
I disabled administrative security, stopped everything on both servers, rebooted the marchines
Enabled "Synchronize Changes with Nodes"
Enabled Administrative security back again and rebooted everything.
Now my nodes are synchronized and no errors in the logs.
No comments:
Post a Comment