PM69830: READING BLA COMPOSITION UNIT FAILS DUE TO LACK OF AUTHORITY

Fixes are available

8.5.0.1: WebSphere Application Server V8.5 Fix Pack 1
8.5.0.2: WebSphere Application Server V8.5 Fix Pack 2

APAR status

Closed as program error.

Error description

Reading BLA Composition Unit fails due to lack of authority

Local fix

Problem summary

****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  Server that enable both administrative      *
*                  security and class reloading for            *
*                  business-level applications.                *
****************************************************************
* PROBLEM DESCRIPTION: Business-level applications fail to     *
*                      restart and emit message SECJ0326E,     *
*                      indicating the lack of invocation       *
*                      credentials.                            *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
The WebSphere Application Server runtime fails to restart
business-level applications when administrative security is
enabled and the application binaries have been updated.
When the runtime detects the updated binaries, it
attempts to restart the application and fails, emitting the
following message and exception call stack.
[7/7/12 10:50:38:016 CDT] 0000006e RoleBasedAuth E
SECJ0326E: No received or invocation credential exist on the
thread. The Role based authorization check will not have an
accessId of the caller to check. The parameters are: role name
administrator. The stack trace is java.lang.Exception:
Invocation and received credentials are both null
at
com.ibm.ws.security.role.RoleBasedAuthorizerImpl.isGrantedAnyRol
e(RoleBasedAuthorizerImpl.java:989)
at
com.ibm.ws.management.authorizer.AdminAuthorizerImpl.checkAccess
(AdminAuthorizerImpl.java:787)
at
com.ibm.ws.management.authorizer.AdminAuthorizerImpl.checkAccess
(AdminAuthorizerImpl.java:252)
at
com.ibm.ws.management.repository.FileRepository.checkInvocationP
ermission(FileRepository.java:2520)
at
com.ibm.ws.management.repository.FileRepository.extract(FileRepo
sitory.java:1135)
at
com.ibm.ws.management.repository.FileRepository.extract(FileRepo
sitory.java:1097)
at
com.ibm.ws.management.repository.FileRepository.extract(FileRepo
sitory.java:1086)
at
com.ibm.ws.management.repository.client.LocalConfigRepositoryCli
ent.extract(LocalConfigRepositoryClient.java:141)
at
com.ibm.ws.management.bla.util.J2EEDeploymentConfig.readActiveSt
atus(J2EEDeploymentConfig.java:598)
at
com.ibm.ws.management.bla.util.J2EEDeploymentConfig.init(J2EEDep
loymentConfig.java:386)
at
com.ibm.ws.management.bla.util.J2EEDeploymentConfig.<init>(J2EED
eploymentConfig.java:198)
at
com.ibm.ws.management.bla.model.CompositionUnitConfig.readJ2EECo
nfig(CompositionUnitConfig.java:546)
at
com.ibm.ws.management.bla.model.CompositionUnitConfig.read(Compo
sitionUnitConfig.java:491)
at
com.ibm.ws.management.bla.model.CompositionUnitFactoryImpl.popul
ateCU(CompositionUnitFactoryImpl.java:261)
at
com.ibm.ws.management.bla.model.CompositionUnitFactoryImpl.readC
ompositionUnitFromCompositionUnitSpec(CompositionUnitFactoryImpl
.java:144)
at
com.ibm.ws.runtime.component.ApplicationMgrImpl.retrieveCU(Appli
cationMgrImpl.java:2256)
at
com.ibm.ws.runtime.component.ApplicationMgrImpl.startApplication
(ApplicationMgrImpl.java:1241)
at
com.ibm.ws.runtime.component.ApplicationMgrImpl$ApplicationNotif
ier.classChanged(ApplicationMgrImpl.java:1895)
at
com.ibm.ws.classloader.ClassLoaderManager.checkAndNotify(ClassLo
aderManager.java:550)
at
com.ibm.ws.classloader.ClassLoaderManager.access$000(ClassLoader
Manager.java:82)
at
com.ibm.ws.classloader.ClassLoaderManager$ReloadTimerTask.alarm(
ClassLoaderManager.java:586)
at com.ibm.ejs.util.am._Alarm.run(_Alarm.java:133)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1814)
.
[7/7/12 10:50:38:027 CDT] 0000006e FileRepositor A
ADMR0024E: User <null> does not have the required role to
access 1 document(s).

Problem conclusion

Apply APAR PM69830 to allow the Applicaton Server to
dynamically restart business-level applications when
administrative security is enabled.

The fix for this APAR is currently targeted for inclusion in
fix pack 8.5.0.1.  Please refer to the Recommended Updates
page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Temporary fix

Comments

APAR Information

APAR number
PM69830
Reported component name
WEBS APP SERV N
Reported component ID
5724H8800
Reported release
850
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2012-07-30
Closed date
2012-08-09
Last modified date
2012-10-08

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name
WEBS APP SERV N
Fixed component ID
5724H8800

Applicable component levels

R850 PSY
UP

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"8.5","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
02 November 2021

Tips

PM69830: READING BLA COMPOSITION UNIT FAILS DUE TO LACK OF AUTHORITY

Fixes are available

Subscribe

APAR status

Closed as program error.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name

Fixed component ID

Applicable component levels

R850 PSY

Document Information

Share your feedback

Need support?