Admin Channel Used Even Though Security Interop Mode is Set to Performance

(Doc ID 2356893.1)

Last updated on FEBRUARY 09, 2018

Applies to:

Oracle WebLogic Server - Version 12.1.3.0.0 and later
Information in this document applies to any platform.

Symptoms

Admin Channel used even though Security Interop Mode is set to Performance. The problem with this is that it doesn't seem to take into consideration the interop mode and causes a conflict such that the anonymous subject is used when making the call over the Admin Channel.  And because of that JTA transactions aren't able to be committed when the transaction spans two managed servers in the same domain. With debug enabled we can see the following:

####<Dec 7, 2017 6:02:36 PM UTC> <Debug> <JTA2PCStackTrace> <localhost> <jms_server_1> <[ACTIVE] ExecuteThread queue: 'weblogic.kernel.Default (self-tuning)'> <> <> <> <1512669756811> <BEA-000000> <Cannot obtain Coordinator: run action key:admin+JmsTestJMS+jms_server_2 coName:jms_server_2

serverURL:admin://localhost:9102+jms_server_2+localhost:7 720+JmsTestJMS+t3s+ tx:Name=JMS Internal,Xid=BEA1-00659FC8BFACEC0F357E(817156157),Status=Active

(PrePreparing),numRepliesOwedMe=0,numRepliesOwedOthers=0,seconds since begin=240,seconds left=3359,useSecure=false,XAServerResourceInfo[WLStore_JmsTestJMS_JmsPersisten

tJdbcStore-2]=(ServerResourceInfo[WLStore_JmsTestJMS_JmsPersistentJdbcStore-2] =(state=new,assigned=none),xar=null,re-Registered =

false),SCInfo[JmsTestJMS+jms_server_1]=(state=active),SCInfo[JmsTestJMS+jms_server_2]=(state=active),properties=({weblogic.transaction.name=JMS

Internal}),OwnerTransactionManager=ServerTM[ServerCoordinatorDescriptor=(CoordinatorURL=jms_server_1+localhost:7720+JmsTestJMS+t3s+

CoordinatorNonSecureURL=null coordinatorSecureURL=jms_server_1+localhost:7720+JmsTestJMS+t3s+

XAResources={WSATGatewayRM_jms_server_1_JmsTestJMS},NonXAResources={})],CoordinatorURL=jms_server_2+localhost:9102+JmsTestJMS+admin+)

 java.lang.SecurityException: User <anonymous> does not have access to the administrator port.

at weblogic.utils.StackTraceDisabled.unknownMethod()

Caused By: java.lang.SecurityException: User <anonymous> does not have access to the administrator port.

at weblogic.utils.StackTraceDisabled.unknownMethod()

>

This means the Admin channel is being used but using the anonymous subject (which isn't allowed on the admin channel). But the point is that the admin channel should not be used in the first place.

 

Changes

 

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms