My Oracle Support Banner

During WebCenter Portal Upgrade from To, the " Verifying SSOFilter Grant" Succeed But "AccessControlException" Raised in the Logs (Doc ID 1597720.1)

Last updated on MARCH 05, 2018

Applies to:

Oracle WebCenter Portal - Version and later
Information in this document applies to any platform.


During the WebCenter patching from to, the post step below required when Oracle Access Manager is used as Single Sign On solution, does not succeed:
The listpermissions shows existing permissions but not the one described in the documentation:

Location changed to domainRuntime tree. This is a read-only tree with DomainMBean as the root.
For more help, use help(domainRuntime)

[Permission Clz Name : java.util.PropertyPermission, Target : sso.filter.*, Actions : read ]
[Permission Clz Name : java.lang.RuntimePermission, Target : getenv.* ]
[Permission Clz Name : java.util.logging.LoggingPermission, Target : control ]

The grant permissions succeed:

wls:/wcm_domain/serverConfig> grantPermission(codeBaseURL='file:$common.components.home/modules/oracle.ssofilter_11.1.1/ssofilter.jar',permClass='',permTarget='*', permActions='get,set,remove') 

But after this post upgrade step, the following error raised many times per seconds: access denied ( QsyYS4TLm1jT4PJvpP8tmnxByJyyyRB5YLd7qfbPT36p5QJ9KyZL!37544000!-694998850!1383650155636 remove)
Truncated. see log file for complete stacktrace


The Fusion Middleware environment has been upgraded from to, following this documentation:

Oracle® Fusion Middleware Patching Guide 11g Release 1 ( Verifying SSOFilter Grant



To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.