ImportPolicy and MDC APS Do Not Update/Import Some Policies In a Multicenter Environment (Doc ID 2149923.1)

Last updated on JULY 07, 2016

Applies to:

Oracle Access Manager - Version 11.1.2.2.0 to 11.1.2.2.0 [Release 11g]
Information in this document applies to any platform.

Symptoms

Implemented APS in order to synchronize policies in a MDC environment automatically, but some of them do not update -> an authentication policy and an authorization policy.

This is all that appears in the AdminServer logs:


[AdminServer] [ERROR][oracle.oam.engine.policy] [APP: oam_admin#11.1.2.0.0] Unable apply Journal Changes :EntityChange : Entity Change Sequence Number = "1058", Journal Type = "ENTITY", Target Entity Id = "57ba3fb8-29db-4fde-84e5-6264f233aa04", Target Entity Name Path = "11.1.2.2.0/policy/modifyAuthnPolicy", operation = "MODIFY", Attribute Changes = "[AttributeChange : Attribute Name = "authnPolicy", Attribute Operation = "ADD", Current Value = "[oracle.security.am.common.policy.admin.model.AuthenticationPolicy, ACED00057372004A6F7261636C652E736563...

If manually launching export/import policies this warning appears: 


[AdminServer] [WARNING][oracle.oam.t2p][APP: oam_admin#11.1.2.0.0] Unable to migrate authentication policy: Policy name="authentication_default", id="888db98c-2328-4ea6-930f-87eda160e354", description="Default Authentication**", owners="[]", resources="[181fb82d-f5ee-463f-b398-be076dc811f8, acf35a82-5d6....

The steps tried without success:
1.- Revoke the APS setting and recreating it
2.- Manual import/export policies
3.- Creating a policy with the same name in the replicated center
4.- Removing some resources from the policy (originally there were 80+ resources)

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms