ImportPolicy and MDC APS Do Not Update/Import Some Policies In a Multicenter Environment
Last updated on JULY 07, 2016
Applies to:Oracle Access Manager - Version 220.127.116.11.0 to 18.104.22.168.0 [Release 11g]
Information in this document applies to any platform.
Implemented APS in order to synchronize policies in a MDC environment automatically, but some of them do not update -> an authentication policy and an authorization policy.
This is all that appears in the AdminServer logs:
[AdminServer] [ERROR][oracle.oam.engine.policy] [APP: oam_admin#22.214.171.124.0] Unable apply Journal Changes :EntityChange : Entity Change Sequence Number = "1058", Journal Type = "ENTITY", Target Entity Id = "57ba3fb8-29db-4fde-84e5-6264f233aa04", Target Entity Name Path = "126.96.36.199.0/policy/modifyAuthnPolicy", operation = "MODIFY", Attribute Changes = "[AttributeChange : Attribute Name = "authnPolicy", Attribute Operation = "ADD", Current Value = "[oracle.security.am.common.policy.admin.model.AuthenticationPolicy, ACED00057372004A6F7261636C652E736563...
If manually launching export/import policies this warning appears:
[AdminServer] [WARNING][oracle.oam.t2p][APP: oam_admin#188.8.131.52.0] Unable to migrate authentication policy: Policy name="authentication_default", id="888db98c-2328-4ea6-930f-87eda160e354", description="Default Authentication**", owners="", resources="[181fb82d-f5ee-463f-b398-be076dc811f8, acf35a82-5d6....
The steps tried without success:
1.- Revoke the APS setting and recreating it
2.- Manual import/export policies
3.- Creating a policy with the same name in the replicated center
4.- Removing some resources from the policy (originally there were 80+ resources)
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms