Cannot edit IDP cluster after upgrade from NAM 3.2 to 4.0

  • 7015116
  • 29-May-2014
  • 29-May-2014

Environment

NetIQ Access Manager 3.2 Support Pack 2 applied
Upgrading to NetIQ Access Manager 4.0

Situation

Recently upgraded a NAM environment from 3.2.2 to AM 4.0, where everything was working fine. The upgrade logs appeared to show no errors and users could authenticate successfully and access protected resources. However, as soon as the admin tries to access the IDP cluster in iManager, the following stack trace is thrown on the browser:

1051: 1052: Stacktrace: at
org.apache.jasper.compiler.DefaultErrorHandler.javacError(DefaultErrorHandler.java:103) at org.apache.jasper.compiler.ErrorDispatcher.javacError(ErrorDispatcher.java:366) at org.apache.jasper.compiler.JDTCompiler.generateClass(JDTCompiler.java:468) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:378) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:353) at org.apache.jasper.compiler.Compiler.compile(Compiler.java:340) at org.apache.jasper.JspCompilationContext.compile(JspCompilationContext.java:646) at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:357) at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:390) at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:334) at javax.servlet.http.HttpServlet.service(HttpServlet.java:728) at
:

The catalina.out file on the AC would appear to indicate that there's an issue with the schema changes for ws-trust:

Mar 12, 2014 11:53:57 AM org.apache.catalina.core.ApplicationDispatcher invoke
SEVERE: Servlet.service() for servlet jsp threw exception org.apache.jasper.JasperException:
Unable to compile class for JSP:

An error occurred at line: 90 in the jsp file: /portal/modules/nids/skins/default/devices/default/general/WizardPage_Configuration_Name.jsp
PARAM_PROTOCOL_WSTRUST cannot be resolved or is not a field
87: isSTSProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_STS, true );
88: isCardspaceProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_CARDSPACE, true );
89: isWSFedProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSFEDERATION, true );
90: isWSTrustProtocolEnabled = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_PROTOCOL_WSTRUST, true);
91: isServiceProvider = Util.safeGetAttributeAsBoolean( request, HTTP.PARAM_IS_CONSUMER, true );

Resolution

Copy the NIDS_Plugin.jar from the NAM 4.0 install directory to /var/opt/novell/iManager/nps/WEB-INF/lib/NIDS_Plugin.jar.
The install failed to copy it over as the 4.0 box still had the old 3.2 jar.