Java.Security.AccessControlException: Access Denied While Fetching User Password From Credstore in OSM
Last updated on MAY 02, 2017
Applies to:Oracle Communications Order and Service Management - Version 7.2.4 and later
Information in this document applies to any platform.
OSM version 188.8.131.52.9
Weblogic Server version - WLS 10.3.6.09 ; Cluster Environment with 2 Managed Servers
Oracle Database 184.108.40.206 - RAC
The error java.security.AccessControlException: access denied is raised by a custom User Interface OSM application when the user name and password are fetched securely from credential store. Credstore utility will help to meet security guidelines and secure the way of retrieving user credentials. Followed the guidelines provided in Section 4 Securing Credentials Required to Access External Systems Communications Order and Service Management System Administrator's Guide, but the issue still persists.
This custom UI was build to create OSM orders and it is basically a WAR file deployed in the Weblogic Server. For couple of scenario's, create order is triggered from this UI and submitted to OSM for order fulfillment. The source code for UI was modified to accommodate the security changes and to fetch the user credentials using credstore utility and it uses property files for mapName and keyName to fetch the password securely. Below is the error logged while running the application :
Hard Code user credentials in property file but this solution is not secure.
Sign In with your My Oracle Support account
Don't have a My Oracle Support account? Click to get started
My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms