Environment
Novell Access Manager 3.2 Access Administration
Situation
After successfully migrating the Admin Console from 3.1.4 to 3.2, the new 3.2 Admin Console repeatedly gives the following popup error on every
login request:
"Datastore authentication error, bad password or certificate"
"Datastore authentication error, bad password or certificate"
Resolution
Restart the Admin Console tomcat and eDirectory services (or restart the machine). There was an issue with the LDAP login request from the Admin Console application to the local configuration store and the app_sc log file on the Admin Console (available from /opt/novell/devman/share/logs/ directory) included the following exception:
29390(D)2012-04-19T19:27:37Z(L)application.sc.scheduler(T)15(C)com.volera.vcdn.application.sc.scheduler.PersistantScheduler(M)removeScheduledWork(Msg)Removing scheduled work for id: PSW-6cabb5ee6768b02caa705b42dea136ad6c4106aa7abb
29391(D)2012-04-19T19:27:37Z(L)application.sc.scheduler(T)15(C)com.volera.vcdn.application.sc.scheduler.PersistantScheduler(M)removeScheduledWork(Msg)Removed PersistantScheduledWorkPSW-6cabb5ee6768b02caa705b42dea136ad6c4106aa7abb work: com.volera.vcdn.application.sc.command.work.DeviceCommandWork@391b8846
29392(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)12(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Adding com.volera.vcdn.application.sc.core.work.CertUpdateWork@51e4bece
29393(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)12(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Size: 1
29394(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)62(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Picked up work com.volera.vcdn.application.sc.core.work.CertUpdateWork@51e4bece
29395(D)2012-04-19T19:27:47Z(L)application.sc.core(T)15(C)com.volera.vcdn.application.sc.core.VException(M)<init>(E)javax.naming.AuthenticationException: [LDAP: error code 49 - NDS error: failed authentication (-669)]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3067)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2815)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2729)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:296)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
at javax.naming.InitialContext.init(InitialContext.java:223)
at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:134)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdap.login(y:3090)
at com.volera.vcdn.platform.storage.protocol.ldap.SXmldap.login(y:2080)
at sun.reflect.GeneratedMethodAccessor168.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.volera.vcdn.platform.storage.core.SCommand.dispatch(y:3069)
at com.volera.vcdn.platform.storage.core.controller.SMethodCaller.dispatch(y:2420)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdapExceptionDispatcher.dispatch(y:2601)
at com.volera.vcdn.platform.storage.protocol.ldap.SRetryDispatcher.dispatch(y:12)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdap.dispatch(y:740)
at com.volera.vcdn.platform.storage.core.SUser._login(y:1453)
at com.volera.vcdn.platform.storage.core.SUser.login(y:238)
at com.volera.vcdn.platform.storage.core.SUser.login(y:2416)
at com.volera.vcdn.application.sc.core.User.userLogin(y:2699)
at com.volera.vcdn.application.sc.command.work.DeviceCommandWork.removed(y:1379)
at com.volera.vcdn.application.sc.scheduler.PersistantScheduler.removeScheduledWork(y:2670)
at com.volera.vcdn.application.sc.scheduler.PersistantScheduler.removeScheduledWork(y:2681)
at com.volera.vcdn.application.sc.scheduler.AbstractScheduler$SchedulerThread.run(y:3291)
(Msg)<amLogEntry> 2012-04-19T15:27:47Z SEVERE DeviceManager: AM#100905083: Datastore authentication error, bad password or certificate. </amLogEntry>
29390(D)2012-04-19T19:27:37Z(L)application.sc.scheduler(T)15(C)com.volera.vcdn.application.sc.scheduler.PersistantScheduler(M)removeScheduledWork(Msg)Removing scheduled work for id: PSW-6cabb5ee6768b02caa705b42dea136ad6c4106aa7abb
29391(D)2012-04-19T19:27:37Z(L)application.sc.scheduler(T)15(C)com.volera.vcdn.application.sc.scheduler.PersistantScheduler(M)removeScheduledWork(Msg)Removed PersistantScheduledWorkPSW-6cabb5ee6768b02caa705b42dea136ad6c4106aa7abb work: com.volera.vcdn.application.sc.command.work.DeviceCommandWork@391b8846
29392(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)12(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Adding com.volera.vcdn.application.sc.core.work.CertUpdateWork@51e4bece
29393(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)12(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Size: 1
29394(D)2012-04-19T19:27:47Z(L)application.sc.defaultExecutor(T)62(C)com.volera.vcdn.platform.executor.PriorityExecutor(M)logInfo(Msg)Priority Queue - Picked up work com.volera.vcdn.application.sc.core.work.CertUpdateWork@51e4bece
29395(D)2012-04-19T19:27:47Z(L)application.sc.core(T)15(C)com.volera.vcdn.application.sc.core.VException(M)<init>(E)javax.naming.AuthenticationException: [LDAP: error code 49 - NDS error: failed authentication (-669)]
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(LdapCtx.java:3067)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:3013)
at com.sun.jndi.ldap.LdapCtx.processReturnCode(LdapCtx.java:2815)
at com.sun.jndi.ldap.LdapCtx.connect(LdapCtx.java:2729)
at com.sun.jndi.ldap.LdapCtx.<init>(LdapCtx.java:296)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURL(LdapCtxFactory.java:175)
at com.sun.jndi.ldap.LdapCtxFactory.getUsingURLs(LdapCtxFactory.java:193)
at com.sun.jndi.ldap.LdapCtxFactory.getLdapCtxInstance(LdapCtxFactory.java:136)
at com.sun.jndi.ldap.LdapCtxFactory.getInitialContext(LdapCtxFactory.java:66)
at javax.naming.spi.NamingManager.getInitialContext(NamingManager.java:667)
at javax.naming.InitialContext.getDefaultInitCtx(InitialContext.java:288)
at javax.naming.InitialContext.init(InitialContext.java:223)
at javax.naming.ldap.InitialLdapContext.<init>(InitialLdapContext.java:134)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdap.login(y:3090)
at com.volera.vcdn.platform.storage.protocol.ldap.SXmldap.login(y:2080)
at sun.reflect.GeneratedMethodAccessor168.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)
at java.lang.reflect.Method.invoke(Method.java:597)
at com.volera.vcdn.platform.storage.core.SCommand.dispatch(y:3069)
at com.volera.vcdn.platform.storage.core.controller.SMethodCaller.dispatch(y:2420)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdapExceptionDispatcher.dispatch(y:2601)
at com.volera.vcdn.platform.storage.protocol.ldap.SRetryDispatcher.dispatch(y:12)
at com.volera.vcdn.platform.storage.protocol.ldap.SLdap.dispatch(y:740)
at com.volera.vcdn.platform.storage.core.SUser._login(y:1453)
at com.volera.vcdn.platform.storage.core.SUser.login(y:238)
at com.volera.vcdn.platform.storage.core.SUser.login(y:2416)
at com.volera.vcdn.application.sc.core.User.userLogin(y:2699)
at com.volera.vcdn.application.sc.command.work.DeviceCommandWork.removed(y:1379)
at com.volera.vcdn.application.sc.scheduler.PersistantScheduler.removeScheduledWork(y:2670)
at com.volera.vcdn.application.sc.scheduler.PersistantScheduler.removeScheduledWork(y:2681)
at com.volera.vcdn.application.sc.scheduler.AbstractScheduler$SchedulerThread.run(y:3291)
(Msg)<amLogEntry> 2012-04-19T15:27:47Z SEVERE DeviceManager: AM#100905083: Datastore authentication error, bad password or certificate. </amLogEntry>