OPSS - WebLogic Admin Experiencing Outages with Log Error: java.security.AccessControlException: access denied
(Doc ID 2108575.1)
Last updated on DECEMBER 22, 2023
Applies to:
Oracle Platform Security for Java - Version 11.1.1.6.0 and laterInformation in this document applies to any platform.
Symptoms
Observing these error messages in the log files
In the wls_ods01-diagnostic.log
[oracle.ldap.odsm.ui.common.Visit] [tid:<tid> [ecid: <ecid>] [APP: odsm#11.1.1.2.0] [DSID:<DSID>] getSsoLogoutUrl[[
java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=ODSMMap,keyName=ODSMKey.SSOLogoutURL" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
In the AdminServer-diagnostic.log
Caused by: java.security.PrivilegedActionException: oracle.security.jps.service.policystore.PolicyStoreException: javax.naming.CommunicationException: <HOST>:<PORT>[Root exception is java.net.ConnectException: Connection refused]
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver.getApplicationRoles(JpsAbsSubjectResolver.java:531)
... 65 more
Caused by: oracle.security.jps.service.policystore.PolicyStoreException: javax.naming.CommunicationException: stl-dfusapp-21.lac1.biz:3060 [Root exception is java.net.ConnectException: Connection refused]
at oracle.security.jps.internal.policystore.ldap.NamingExceptionUtils.namingExceptionToPolicyStoreException(NamingExceptionUtils.java:60)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:644)
at oracle.security.jps.az.internal.runtime.service.PDPServiceImpl.getApplicationPolicy(PDPServiceImpl.java:688)
at oracle.security.jps.internal.policystore.PolicyUtil.getGrantedAppRoles(PolicyUtil.java:3005)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver$6.run(JpsAbsSubjectResolver.java:541)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver$6.run(JpsAbsSubjectResolver.java:531)
... 67 more
Caused by: javax.naming.CommunicationException: <HOST_NAME>:<PORT> [Root exception is java.net.ConnectException: Connection refused]
at com.sun.jndi.ldap.Connection.(Connection.java:226)
at com.sun.jndi.ldap.LdapClient.(LdapClient.java:136)
at com.sun.jndi.ldap.LdapClientFactory.createPooledConnection(LdapClientFactory.java:64)
at com.sun.jndi.ldap.pool.Connections.getOrCreateConnection(Connections.java:203)
at javax.naming.InitialContext.init(InitialContext.java:242)
at javax.naming.ldap.InitialLdapContext.(InitialLdapContext.java:153)
at oracle.security.jps.internal.common.ldap.connection.pool.AbstractConnectionPool.leaseConnection(AbstractConnectionPool.java:81)
at oracle.security.jps.internal.common.ldap.util.JpsLdapCommonUtil.search(JpsLdapCommonUtil.java:179)
at oracle.security.jps.internal.common.ldap.util.JpsLdapCommonUtil.search(JpsLdapCommonUtil.java:155)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:631)
... 79 more
Caused by: java.net.ConnectException: Connection refused
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:339)
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:200)
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
at java.net.Socket.connect(Socket.java:579)
at java.net.Socket.connect(Socket.java:528)
at java.net.Socket.(Socket.java:425)
at java.net.Socket.(Socket.java:208)
at com.sun.jndi.ldap.Connection.createSocket(Connection.java:368)
at com.sun.jndi.ldap.Connection.(Connection.java:203)
... 100 more
at java.security.AccessController.doPrivileged(Native Method)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver.getApplicationRoles(JpsAbsSubjectResolver.java:531)
... 65 more
Caused by: oracle.security.jps.service.policystore.PolicyStoreException: javax.naming.CommunicationException: stl-dfusapp-21.lac1.biz:3060 [Root exception is java.net.ConnectException: Connection refused]
at oracle.security.jps.internal.policystore.ldap.NamingExceptionUtils.namingExceptionToPolicyStoreException(NamingExceptionUtils.java:60)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:644)
at oracle.security.jps.az.internal.runtime.service.PDPServiceImpl.getApplicationPolicy(PDPServiceImpl.java:688)
at oracle.security.jps.internal.policystore.PolicyUtil.getGrantedAppRoles(PolicyUtil.java:3005)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver$6.run(JpsAbsSubjectResolver.java:541)
at oracle.security.jps.internal.jaas.JpsAbsSubjectResolver$6.run(JpsAbsSubjectResolver.java:531)
... 67 more
Caused by: javax.naming.CommunicationException: <HOST_NAME>:<PORT> [Root exception is java.net.ConnectException: Connection refused]
at com.sun.jndi.ldap.Connection.(Connection.java:226)
at com.sun.jndi.ldap.LdapClient.(LdapClient.java:136)
at com.sun.jndi.ldap.LdapClientFactory.createPooledConnection(LdapClientFactory.java:64)
at com.sun.jndi.ldap.pool.Connections.getOrCreateConnection(Connections.java:203)
at javax.naming.InitialContext.init(InitialContext.java:242)
at javax.naming.ldap.InitialLdapContext.(InitialLdapContext.java:153)
at oracle.security.jps.internal.common.ldap.connection.pool.AbstractConnectionPool.leaseConnection(AbstractConnectionPool.java:81)
at oracle.security.jps.internal.common.ldap.util.JpsLdapCommonUtil.search(JpsLdapCommonUtil.java:179)
at oracle.security.jps.internal.common.ldap.util.JpsLdapCommonUtil.search(JpsLdapCommonUtil.java:155)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:631)
... 79 more
Caused by: java.net.ConnectException: Connection refused
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:339)
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:200)
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
at java.net.Socket.connect(Socket.java:579)
at java.net.Socket.connect(Socket.java:528)
at java.net.Socket.(Socket.java:425)
at java.net.Socket.(Socket.java:208)
at com.sun.jndi.ldap.Connection.createSocket(Connection.java:368)
at com.sun.jndi.ldap.Connection.(Connection.java:203)
... 100 more
In AdminServer.log
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: oracle.security.jps.service.policystore.PolicyStoreException: javax.naming.CommunicationException: <HOST>:<PORT> [Root exception is java.net.ConnectException: Connection refused]
at oracle.security.jps.internal.policystore.ldap.NamingExceptionUtils.namingExceptionToPolicyStoreException(NamingExceptionUtils.java:60)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:644)
at oracle.security.jps.internal.policystore.ldap.LdapPolicyStore.tryLoadApplicationPolicy(LdapPolicyStore.java:776)
at oracle.security.jps.internal.policystore.ldap.LdapPolicyStore.unsync_getApplicationPolicy(LdapPolicyStore.java:738)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:545)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: javax.naming.CommunicationException: stl-dfusapp-21.lac1.biz:3060 [Root exception is java.net.ConnectException: Connection refused]
at com.sun.jndi.ldap.Connection.(Connection.java:226)
at com.sun.jndi.ldap.LdapClient.(LdapClient.java:136)
at com.sun.jndi.ldap.LdapClientFactory.createPooledConnection(LdapClientFactory.java:64)
at com.sun.jndi.ldap.pool.Connections.(Connections.java:115)
at weblogic.work.ContextWrap.run(ContextWrap.java:41)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:545)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: java.net.ConnectException: Connection refused
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:339)
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:200)
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: oracle.security.jps.service.policystore.PolicyStoreException: javax.naming.CommunicationException: <HOST>:<PORT> [Root exception is java.net.ConnectException: Connection refused]
at oracle.security.jps.internal.policystore.ldap.NamingExceptionUtils.namingExceptionToPolicyStoreException(NamingExceptionUtils.java:60)
at oracle.security.jps.internal.policystore.ldap.JpsLdapDataManager.jpsObjectListQuery(JpsLdapDataManager.java:644)
at oracle.security.jps.internal.policystore.ldap.LdapPolicyStore.tryLoadApplicationPolicy(LdapPolicyStore.java:776)
at oracle.security.jps.internal.policystore.ldap.LdapPolicyStore.unsync_getApplicationPolicy(LdapPolicyStore.java:738)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:545)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: javax.naming.CommunicationException: stl-dfusapp-21.lac1.biz:3060 [Root exception is java.net.ConnectException: Connection refused]
at com.sun.jndi.ldap.Connection.(Connection.java:226)
at com.sun.jndi.ldap.LdapClient.(LdapClient.java:136)
at com.sun.jndi.ldap.LdapClientFactory.createPooledConnection(LdapClientFactory.java:64)
at com.sun.jndi.ldap.pool.Connections.(Connections.java:115)
at weblogic.work.ContextWrap.run(ContextWrap.java:41)
at weblogic.work.SelfTuningWorkManagerImpl$WorkAdapterImpl.run(SelfTuningWorkManagerImpl.java:545)
at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)
at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)
Caused By: java.net.ConnectException: Connection refused
at java.net.PlainSocketImpl.socketConnect(Native Method)
at java.net.AbstractPlainSocketImpl.doConnect(AbstractPlainSocketImpl.java:339)
at java.net.AbstractPlainSocketImpl.connectToAddress(AbstractPlainSocketImpl.java:200)
at java.net.AbstractPlainSocketImpl.connect(AbstractPlainSocketImpl.java:182)
at java.net.SocksSocketImpl.connect(SocksSocketImpl.java:392)
In the wls_ods01-diagnostic.log
[oracle.ldap.odsm.ui.common.Visit] [tid:<TID>'] [userId: anonymous] [ecid:<ECID>] [APP: odsm#11.1.1.2.0] [DSID:<DSID>] getSsoLogoutUrl[[
java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=ODSMMap,keyName=ODSMKey.SSOLogoutURL" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
Cause
To view full details, sign in with your My Oracle Support account. |
|
Don't have a My Oracle Support account? Click to get started! |
In this Document
| Symptoms |
| Cause |
| Solution |