Environment
NetIQ Access Manager 3.2 Support Pack 2 applied
Upgrading to NetIQ Access Manager 4.0
Upgrading to NetIQ Access Manager 4.0
Situation
Recently upgraded a NAM environment from 3.2.2 to
AM 4.0, where everything was working fine. The upgrade logs appeared to show no
errors and users could authenticate successfully and access protected
resources.
However, as soon as the admin tries to access the IDP cluster in iManager, the
following stack trace is thrown on the browser:
1051: 1052: Stacktrace: at
org.apache.jasper.compiler.DefaultErrorHandler.javacError(DefaultErrorHandler.java:103) at org.apache.jasper.compiler.ErrorDispatcher.javacError(ErrorDispatcher.java:366) at org.apache.jasper.compiler.JDTCompiler.generateClass(JDTCompiler.java:468) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:378) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:353) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:340) at org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:646) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:357) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:390) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:334) at javax.servlet.http.HttpServlet.service(HttpServlet.java:728) at
:
The catalina.out file on the AC would appear to indicate that there's an issue with the schema changes for ws-trust:
Mar 12, 2014 11:53:57 AM org.apache.catalina.core.ApplicationDispatcher invoke
SEVERE: Servlet.service() for servlet jsp threw exception org.apache.jasper.JasperException:
Unable to compile class for JSP:
An error occurred at line: 90 in the jsp file: /portal/modules/nids/skins/default/devices/default/general/WizardPage_Configuration_Name.jsp
PARAM_PROTOCOL_WSTRUST cannot be resolved or is not a field
87: isSTSProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_STS, true );
88: isCardspaceProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_CARDSPACE, true );
89: isWSFedProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSFEDERATION, true );
90: isWSTrustProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSTRUST, true);
91: isServiceProvider = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_IS_CONSUMER, true );
1051: 1052: Stacktrace: at
org.apache.jasper.compiler.DefaultErrorHandler.javacError(DefaultErrorHandler.java:103) at org.apache.jasper.compiler.ErrorDispatcher.javacError(ErrorDispatcher.java:366) at org.apache.jasper.compiler.JDTCompiler.generateClass(JDTCompiler.java:468) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:378) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:353) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:340) at org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:646) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:357) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:390) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:334) at javax.servlet.http.HttpServlet.service(HttpServlet.java:728) at
:
The catalina.out file on the AC would appear to indicate that there's an issue with the schema changes for ws-trust:
Mar 12, 2014 11:53:57 AM org.apache.catalina.core.ApplicationDispatcher invoke
SEVERE: Servlet.service() for servlet jsp threw exception org.apache.jasper.JasperException:
Unable to compile class for JSP:
An error occurred at line: 90 in the jsp file: /portal/modules/nids/skins/default/devices/default/general/WizardPage_Configuration_Name.jsp
PARAM_PROTOCOL_WSTRUST cannot be resolved or is not a field
87: isSTSProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_STS, true );
88: isCardspaceProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_CARDSPACE, true );
89: isWSFedProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSFEDERATION, true );
90: isWSTrustProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSTRUST, true);
91: isServiceProvider = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_IS_CONSUMER, true );
Resolution
Copy the NIDS_Plugin.jar from the NAM 4.0 install directory to /var/opt/novell/iManager/nps/WEB-INF/lib/NIDS_Plugin.jar.
The install failed to copy it over as the 4.0 box still had the old 3.2 jar.