"oracle.bpel.services.common.util.EncryptionService.encrypt" Not Able to Access Deployed Composites on SOA Servers on Different Physical Machines or Different Domain Folders (Doc ID 1289504.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle SOA Suite - Version 11.1.1.3.0 and later
Information in this document applies to any platform.
***Checked for relevance on 22-July-2014***

Symptoms

In SOA cluster with 2 or more SOA servers, the deployed composites are accessible only on servers running on the same physical box/ sharing the same domain folder where admin server is running. While accessing composites deployed on soa servers running on different physical box / different domain directory in the same physical box (Domain created as per the Enterprise Deployment Guide (EDG) documentation),  throws the following exception in the logs:

Unable to Encrypt data.
Unable to Encrypt data.
Check installation/post-installation steps for errors. Check for errors during SOA server startup.

at oracle.bpel.services.common.util.EncryptionService.encrypt(EncryptionService.java:58)
at oracle.bpel.services.workflow.verification.impl.VerificationService.encryptString(VerificationService.java:2336)
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTokenFromMap(VerificationService.java:2094)
at oracle.bpel.services.workflow.verification.impl.VerificationService.getInternalContextToken(VerificationService.java:403)
... 134 more
Caused by: java.security.AccessControlException: access denied (oracle.security.jps.service.credstore.CredentialAccessPermission context=SYSTEM,mapName=BPM-CRYPTO,keyName=BPM-CRYPTO read)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
at java.security.AccessController.checkPermission(AccessController.java:546)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:378)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:438)
at oracle.security.jps.util.JpsAuth.checkPermission(JpsAuth.java:460)
at oracle.security.jps.internal.credstore.util.CsfUtil.checkPermission(CsfUtil.java:579)
at oracle.security.jps.internal.credstore.ssp.SspCredentialStore.getCredential(SspCredentialStore.java:410)
at oracle.bpel.services.common.util.CSFStore$1.run(CSFStore.java:234)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.bpel.services.common.util.CSFStore.getCredentialInfo(CSFStore.java:227)
at oracle.bpel.services.common.util.EncryptionService.getKey(EncryptionService.java:132)
at oracle.bpel.services.common.util.EncryptionService.encrypt(EncryptionService.java:54)
... 137 more


During server startup, logs contains the following exception:

<Jan 12, 2011 12:02:59 PM EST> <Error> <oracle.soa.services.workflow.common> <BEA-000000> <Unable to Encrypt data.
Check installation/post-installation steps for errors. Check for errors during SOA server startup.

ORABPEL-35010

Unable to Encrypt data.
Unable to Encrypt data.
Check installation/post-installation steps for errors. Check for errors during SOA server startup.

at oracle.bpel.services.common.util.EncryptionService.encrypt(EncryptionService.java:58)
at oracle.bpel.services.workflow.verification.impl.VerificationService.encryptString(VerificationService.java:2336)
at oracle.bpel.services.workflow.verification.impl.VerificationService.createTokenFromMap(VerificationService.java:2094)
at oracle.bpel.services.workflow.verification.impl.VerificationService.getInternalContextToken(VerificationService.java:403)
at oracle.bpel.services.workflow.verification.impl.VerificationService.getInternalContext(VerificationService.java:430)
at oracle.bpel.services.workflow.verification.impl.VerificationService.<clinit>(VerificationService.java:367)
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:39)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:27)
at java.lang.reflect.Constructor.newInstance(Constructor.java:513)
at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:100)
at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:61)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.instantiateBean(AbstractAutowireCapableBeanFactory.java:877)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:839)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:440)
at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory$1.run(AbstractAutowireCapableBeanFactory.java:409)

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms