Problems associated with The Policy/Credential Store Migration or Re-association To OiD 10.1.4.3 (Doc ID 953842.1)

Last updated on JULY 29, 2014

Applies to:

Oracle WebCenter Portal - Version 11.1.1.1.0 and later
Information in this document applies to any platform.
Checked for relevance on 29-Jul-2014

Symptoms

Scenario1: Only settings TAB displays after Policy/Credential Store Migration to OiD 10.1.4.3 for new and existing Group Spaces.

After performing the steps to migrate the policy/credential store to an OID 10.1.4.3 setup accessing existing group spaces, as well as creating new group spaces you will see that only the Settings tab is displayed.  All other default tabs like (Home, Events, List, Search, ....) are not displayed.

On the Settings tab when you check the Roles Subtab you can see that all privileges are lost and you can not add them back.

 

Scenario2: Error Seen In Webcenter Cluster After Configuring LDAP Policy Store - Fatal error occurred while getting the roles for current scope

In a webcenter cluster, re-associate the policy store to ldap based according to the WebCenter admin guide, then, the following error is raised in Spaces both when creating a Group Space or when revoking Group Space Access from a role:

WCS#2010.12.23.12.56.30: Fatal error occurred while getting the roles for current scope.

 

This is accompanied by the following errors in the log:

[2010-12-20T16:59:11.261+08:00] [WLS_Spaces] [ERROR] [] [oracle.webcenter.webcenterapp.internal.model.security.WebCenterSecurityDC] [tid: [ACTIVE].ExecuteThread: '10' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: itssistf1] [ecid: 0000Io30FCHAtHsp4gePQi1D3kQB0000EH,0] [APP: webcenter] [dcid: eea14f485f2552f4:-45d1319c:12d02b22b0f:-7ff3-0000000000001126] [[
oracle.webcenter.webcenterapp.security.WCSecurityException: Unable to revoke permission ASL_L_Test_1
at oracle.webcenter.webcenterapp.internal.model.security.WCSecurityManagerImpl.revokePermission(WCSecurityManagerImpl.java:1825)
...
Caused by: oracle.security.jps.service.policystore.PolicyObjectNotFoundException: JPS-04205: Cannot revoke permissions.
at oracle.security.jps.internal.policystore.ldap.Gran
...
2010-12-23T14:54:31.393+08:00] [WLS_Spaces] [ERROR] [] [oracle.webcenter.webcenterapp.internal.model.security.WebCenterSecurityDC] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: itssistf1] [ecid: 0000IoI0UTxAtHsp4gePQi1D4j2h00001O,0] [APP: webcenter] [dcid: eea14f485f2552f4:e84d495:12d11fd00a7:-7ff3-000000000000006d] [[
oracle.webcenter.webcenterapp.security.WCSecurityException: Unable to revoke permission GS_test_3
at oracle.webcenter.webcenterapp.internal.model.security.WCSecurityManagerImpl.revokePermission(WCSecurityManagerImpl.java:1825)
...
[2010-12-23T14:54:31.400+08:00] [WLS_Spaces] [ERROR] [] [oracle.webcenter.webcenterapp] [tid: [ACTIVE].ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'] [userId: itssistf1] [ecid: 0000IoI0UTxAtHsp4gePQi1D4j2h00001O,0] [APP: webcenter] [dcid: eea14f485f2552f4:e84d495:12d11fd00a7:-7ff3-000000000000006d] [[
oracle.webcenter.webcenterapp.WebCenterException: Fatal error occurred while getting the roles for current scope.
at oracle.webcenter.webcenterapp.internal.model.security.WebCenterSecurityDC.saveRoles(WebCenterSecurityDC.java:1308)
at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)


Also when a new group space was created with a non-admin user, the Group Space was created OK, but the user had no privilege at all to do anything with the GS he created. The user merely got the following message:

You do not have access.

When creating a new group space with orcladmin, then the Group Space was created fine, but when changing permissions on the Roles tab then they got reverted after clicking on Apply.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms