My Oracle Support Banner

Importing WebCenter Space Fails To Retain Membership Information On the Members Tab When Using External LDAP Identity Store (Doc ID 1628310.1)

Last updated on MARCH 08, 2017

Applies to:

Oracle WebCenter Portal - Version 11.1.1.7.0 and later
Information in this document applies to any platform.

Symptoms

Customer has two WebCenter Portal 11.1.1.7.0 installs (Dev and QA) both clustered with two managed servers in each setup.
Both setups have the policy and credential stores pointing at their respective databases.

Both Dev and QA are using the same DN in the database store: cn=jpsPolicyRootNode
Both setups are also using external 3rd part ldap servers (sunldap) They each have their own and do not use the same one.


During export/import of a Space (simple test space containing two group members and one user, and only one page) the import completes but when viewing the Space they do not see any of the members displaying on the Members Tab.  Viewing the roles for the Space using EM they are showing as being available, but the GUI of Spaces is not displaying them.



The logs are showing an error like:

"...
[2014-01-28T08:29:40.697-05:00] [WC_Spaces2_2] [WARNING] [WCS-44300] [oracle.webcenter.security.common] [tid: wc concurrency non-pooled worker thread] [userId: user1] [ecid: 0000KFP2a9b2FSG_Ix9Dif1Ite9o0000if,0:1] [APP: webcenter#11.1.1.4.0] An error encountered while granting permissions[[
oracle.security.jps.service.policystore.info.common.InvalidArgumentException: JPS-10160: The Application role sd4487063_4612_473f_93a9_be1cdf78db37#-#Moderator does not belong to application. The application role dn cn=sd4487063_4612_473f_93a9_be1cdf78db37\#-\#Moderator,cn=Application Role,cn=webcenter,cn=jpsXmlFarm,cn=JPSContext,cn=jpsXmlRoot and unique name cn=webcenter,cn=CORPWCPINT,cn=JPSContext,cn=jpsPolicyRootNode are not matching.
at oracle.security.jps.internal.policystore.entitymanager.impl.GrantManagerImpl.applicationRoleBelongsToPolicyContext(GrantManagerImpl.java:341)
at oracle.security.jps.internal.policystore.entitymanager.impl.GrantManagerImpl.checkAppRoleBelongsToCurrentApplication(GrantManagerImpl.java:330)
at oracle.security.jps.internal.policystore.entitymanager.impl.GrantManagerImpl.internal_grant(GrantManagerImpl.java:1124)
at oracle.security.jps.internal.policystore.entitymanager.impl.GrantManagerImpl.grant(GrantManagerImpl.java:2922)
at oracle.security.jps.internal.policystore.JpsPolicy.grant(JpsPolicy.java:795)
at oracle.webcenter.security.common.AppSecurityPolicyManager.overwriteRolesAndPermissions(AppSecurityPolicyManager.java:420)
at oracle.webcenter.webcenterapp.internal.model.lifecycle.WebCenterSecurityLifecycleHandler.importScopedPolicies(WebCenterSecurityLifecycleHandler.java:749)
at oracle.webcenter.webcenterapp.internal.model.lifecycle.WebCenterSecurityLifecycleHandler.importPolicyStore(WebCenterSecurityLifecycleHandler.java:635)
at oracle.webcenter.webcenterapp.internal.model.lifecycle.WebCenterLifecycleHandler.doConfigurationImport(WebCenterLifecycleHandler.java:865)
at oracle.webcenter.lifecycle.configuration.HandlerConfigurationUnit.doImport(HandlerConfigurationUnit.java:123)
at oracle.webcenter.lifecycle.operation.ImportOperation.doImport(ImportOperation.java:131)
at oracle.webcenter.lifecycle.LifecycleService.doImport(LifecycleService.java:450)
at oracle.webcenter.webcenterapp.internal.view.lifecycle.WebCenterImporterThread.run(WebCenterImporterThread.java:103)
at oracle.webcenter.concurrent.RunnableTask.call(RunnableTask.java:44)
at oracle.webcenter.concurrent.Submission$2.run(Submission.java:484)
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:324)
at oracle.webcenter.concurrent.Submission.runAsPrivileged(Submission.java:498)
at oracle.webcenter.concurrent.Submission.run(Submission.java:424)
at oracle.webcenter.concurrent.Submission$SubmissionFutureTask.run(Submission.java:888)
at java.lang.Thread.run(Thread.java:724)

]]
[2014-01-28T08:29:42.647-05:00] [WC_Spaces2_2] [WARNING] [] [oracle.webcenter.spaces] [tid: wc concurrency non-pooled worker thread] [userId: user1] [ecid: 0000KFP2a9b2FSG_Ix9Dif1Ite9o0000if,0:1] [APP: webcenter#11.1.1.4.0] Failed to refresh identities for group space:mysw_home_public due to error = GUID not found
..."

They are unable to perform the import of this space.

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Cause
Solution
References


This document is being delivered to you via Oracle Support's Rapid Visibility (RaV) process and therefore has not been subject to an independent technical review.
My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.