TIBCO Administrator Domain LDAP user login fails when TIBCO ActiveMatrix Policy Directory is installed after TIBCO Administrator Domain configuration.
Article ID: KB0092739
Updated On:
| Products | Versions |
|---|---|
| TIBCO Administrator | - |
| Not Applicable | - |
Description
TIBCO Administrator Domain LDAP (SSL enabled) user authentication in the Administrator GUI fails when TIBCO ActiveMatrix Policy Directory is installed after TIBCO Administrator Domain configuration.
Symptoms:
The following error is seen in the administrator.log file.
-------------------------------------------------------------
2015 Jan 29 17:08:08:895 GMT -0800 Error [AUTH_SASK_test] AESDKJ-0000 [http-bio-8080-exec-67] com.tibco.runtime.pool.ServerNotAvailableException: Server not available at address ldaps://10.107.162.120:636:1tsspa\hshah:ssl
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getAvailableObject(ConnectionPoolImpl.java:198)
at com.tibco.runtime.pool.impl.ObjectPoolImpl.getObject(ObjectPoolImpl.java:219)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getObject(ConnectionPoolImpl.java:188)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getConnection(ConnectionPoolImpl.java:219)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getConnection(ConnectionPoolImpl.java:180)
at com.tibco.pof.authorization.ldap.LdapCorporateRepository$LdapSearchParamSetUserCollection.search(LdapCorporateRepository.java:1235)
at com.tibco.pof.util.CompositeSearchableCollection$CompositeSearchIterator.<init>(CompositeSearchableCollection.java:90)
at com.tibco.pof.util.CompositeSearchableCollection.search(CompositeSearchableCollection.java:42)
at com.tibco.pof.authorization.ldap.LdapCorporateRepository$LdapUserCollection.search(LdapCorporateRepository.java:1151)
at com.tibco.pof.authorization.ldap.LdapCorporateRepository.searchLDAPUsers(LdapCorporateRepository.java:1007)
at com.tibco.pof.authorization.ldap.LdapCorporateRepository.findIsValidCorpUser(LdapCorporateRepository.java:958)
at com.tibco.pof.authorization.impl.AbstractCorporateRepository.isValidCorpUser(AbstractCorporateRepository.java:1188)
at com.tibco.pof.authorization.impl.CorpUserCollectionImpl.isValidCorpUser(CorpUserCollectionImpl.java:388)
at com.tibco.pof.authorization.impl.AuthDomainImpl.isValidCorpUser(AuthDomainImpl.java:618)
... 25 more
Caused by: com.tibco.runtime.pool.ServerNotAvailableException: Server not available at address ldaps://10.107.162.120:636:1tsspa\hshah:ssl
at com.tibco.runtime.pool.ldap.LdapConnection.processLDAPException(LdapConnection.java:107)
at com.tibco.runtime.pool.ldap.LdapConnection.<init>(LdapConnection.java:75)
at com.tibco.runtime.pool.ldap.LdapConnectionFactory.allocate(LdapConnectionFactory.java:188)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.allocate(ConnectionPoolImpl.java:362)
at com.tibco.runtime.pool.impl.ObjectPoolImpl.a(ObjectPoolImpl.java:362)
at com.tibco.runtime.pool.impl.ObjectPoolImpl.getAvailableObject(ObjectPoolImpl.java:276)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getAvailableObject(ConnectionPoolImpl.java:200)
at com.tibco.runtime.pool.impl.ObjectPoolImpl.getObject(ObjectPoolImpl.java:219)
at com.tibco.runtime.pool.impl.ConnectionPoolImpl.getObject(ConnectionPoolImpl.java:188)
... 25 more
-------------------------------------------------------------
Cause:
LDAP user authentication fails in Admi GUI when TIBCO ActiveMatrix Policy Directory is installed after domain configuration. Setting up an Administrator domain with LDAP SSL and later installing Policy director in the same TIBCO HOME is overwriting the existing JAVA installation (cacerts file and other files in the tibcojre64 folder). This is causing the LDAP users authentication failure in the Administrator UI.
Steps to reproduce the error:
2). Install PD 1.1.0 and select Administration on the installation profile screen.
3). Login with an LDAP.
Issue/Introduction
Resolution
Feedback
