OPSS - Unable start Server Getting WSM-02058 Failure occurred in Policy Manager while seeding policies in data store

(Doc ID 2312137.1)

Last updated on OCTOBER 02, 2017

Applies to:

Oracle Platform Security for Java - Version 12.1.3.0.0 and later
Information in this document applies to any platform.

Symptoms

On : 12.1.3.0.0 version, Java Platform Security

When attempting to start server seeing the following error:

<Aug 29, 2017 3:30:17 PM UTC> <Error> <oracle.wsm.resources.policymanager> <WSM-02058> <Failure occurred in Policy Manager while seeding policies in data store.>
[JpsAuth] Check Permission
PolicyContext: [null]
Resource/Target: [AppSecurityContext.setAttributeKey.ORACLE_IDM_IDENTITY_CONTEXT_2.0]
Action: [null]
Permission Class: [oracle.security.jps.JpsPermission]
Result: [SUCCEEDED]
Subject: [null]
Evaluator: [ACC]
...
[JpsAuth] Check Permission
PolicyContext: [null]
Resource/Target: [IdentityAssertion]
Action: [null]
Permission Class: [oracle.security.jps.JpsPermission]
Result: [FAILED]
Evaluator: [ACC]
Failed ProtectionDomain:ClassLoader=weblogic.utils.classloaders.GenericClassLoader@1133939a finder: weblogic.utils.classloaders.CodeGenClassFinder@8a0cd83 annotation: usermessagingserver@
CodeSource=file:/MW_HOME/user_projects/domains/b2bdev3/servers/bam_server1/cache/EJBCompilerCache/6cyb1wkpcbsi/oracle/sdpinternal/messaging/storage/MessagingStore_urkbp2_EOImpl.class
Principals=total 0 of principals<no principals>
Permissions=(
("javax.management.MBeanTrustPermission" "register")
("java.net.SocketPermission" "localhost:0" "listen,resolve")
("java.net.SocketPermission" "localhost:1099" "listen,resolve")
("java.util.PropertyPermission" "line.separator" "read")
("java.util.PropertyPermission" "java.vm.specification.version" "read")
("java.util.PropertyPermission" "java.vm.version" "read")
...
Call Stack: java.security.AccessControlException: access denied ("oracle.security.jps.JpsPermission" "IdentityAssertion")
java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
java.security.AccessController.checkPermission(AccessController.java:559)
oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
...
[JpsAuth] Check Permission
PolicyContext: [null]
Resource/Target: [IdentityAssertion]
Action: [null]
Permission Class: [oracle.security.jps.JpsPermission]
Result: [FAILED]
Evaluator: [ACC]
Failed ProtectionDomain:ClassLoader=weblogic.utils.classloaders.GenericClassLoader@3eb7f488 finder: weblogic.utils.classloaders.CodeGenClassFinder@4a59393c annotation: usermessagingdriver-email@
CodeSource=file:/MW_HOME/oracle_common/communications/modules/oracle.sdp.messaging_2.0/driverframework.jar
Principals=total 0 of principals<no principals>
Permissions=(
("javax.management.MBeanTrustPermission" "register")
("java.net.SocketPermission" "localhost:0" "listen,resolve")
("java.net.SocketPermission" "localhost:1099" "listen,resolve")
("java.util.PropertyPermission" "line.separator" "read")
("java.util.PropertyPermission" "java.vm.specification.version" "read")
..
Call Stack: java.security.AccessControlException: access denied ("oracle.security.jps.JpsPermission" "IdentityAssertion")
java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
java.security.AccessController.checkPermission(AccessController.java:559)
oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:355)
..
[JpsAuth] Check Permission
PolicyContext: [null]
Resource/Target: [context=SYSTEM,mapName=BamServer,keyName=*]
Action: [read]
Permission Class: [oracle.security.jps.service.credstore.CredentialAccessPermission]
Result: [FAILED]
Evaluator: [ACC]
Failed ProtectionDomain:ClassLoader=sun.misc.Launcher$AppClassLoader@63e68a2b
CodeSource=file:/MW_HOME/wlserver/modules/com.oracle.css.weblogic.security.wls_7.1.0.0.jar
Principals=total 0 of principals<no principals>
Permissions=(
("javax.management.MBeanTrustPermission" "register")
("java.io.FilePermission" "/MW_HOME/wlserver/modules/com.oracle.css.weblogic.security.wls_7.1.0.0.jar" "read")
...
Call Stack: java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
java.security.AccessController.checkPermission(AccessController.java:559)
..
[JpsAuth] Check Permission
PolicyContext: [null]
Resource/Target: [context=SYSTEM,mapName=BamServer,keyName=*]
Action: [read]
Permission Class: [oracle.security.jps.service.credstore.CredentialAccessPermission]
Result: [FAILED]
Evaluator: [ACC]
Failed ProtectionDomain:ClassLoader=sun.misc.Launcher$AppClassLoader@63e68a2b
CodeSource=file:/MW_HOME/wlserver/modules/com.oracle.css.weblogic.security.wls_7.1.0.0.jar
Principals=total 0 of principals<no principals>
Permissions=(
("javax.management.MBeanTrustPermission" "register")
("java.io.FilePermission" "/MW_HOME/wlserver/modules/com.oracle.css.weblogic.security.wls_7.1.0.0.jar" "read")
...
Call Stack: java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
java.security.AccessController.checkPermission(AccessController.java:559)
oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
...
<Aug 29, 2017 3:30:39 PM UTC> <Error> <Deployer> <BEA-149231> <Unable to set the activation state to true for the application "BamServer".
java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
at java.security.AccessController.checkPermission(AccessController.java:559)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:355)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:496)
Truncated. see log file for complete stacktrace
Caused By: java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
at java.security.AccessController.checkPermission(AccessController.java:559)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:355)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:496)
Truncated. see log file for complete stacktrace
>

...
<Aug 29, 2017 3:33:09 PM UTC> <Error> <Deployer> <BEA-149265> <Failure occurred in the execution of deployment request with ID "10438682729306575" for task "0". Error is: "java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")"
java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
at java.security.AccessController.checkPermission(AccessController.java:559)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:355)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:496)
Truncated. see log file for complete stacktrace
Caused By: java.security.AccessControlException: access denied ("oracle.security.jps.service.credstore.CredentialAccessPermission" "context=SYSTEM,mapName=BamServer,keyName=*" "read")
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:372)
at java.security.AccessController.checkPermission(AccessController.java:559)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$3.checkPermission(JpsAuth.java:472)
at oracle.security.jps.util.JpsAuth$Diagnostic.checkPermission(JpsAuth.java:355)
at oracle.security.jps.util.JpsAuth$AuthorizationMechanism$6.checkPermission(JpsAuth.java:496)
Truncated. see log file for complete stacktrace
>

<Aug 29, 2017 3:33:12 PM UTC> <Notice> <WebLogicServer> <BEA-000365> <Server state changed to FAILED.>

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms