Java.Security.AccessControlException: Access Denied While Fetching User Password From Credstore in OSM (Doc ID 2081131.1)

Last updated on MAY 02, 2017

Applies to:

Oracle Communications Order and Service Management - Version 7.2.4 and later
Information in this document applies to any platform.

Symptoms

OSM version 7.2.4.1.9
Weblogic Server version - WLS 10.3.6.09 ; Cluster Environment with 2 Managed Servers
Oracle Database 11.2.0.3 - RAC
Java 1.7.0_71

The error java.security.AccessControlException: access denied is raised by a custom User Interface OSM application when the user name and password are fetched securely from credential store. Credstore utility will help to meet security guidelines and secure the way of retrieving user credentials. Followed the guidelines provided in Section 4 Securing Credentials Required to Access External Systems Communications Order and Service Management System Administrator's Guide, but the issue still persists.

This custom UI was build to create OSM orders and it is basically a WAR file deployed in the Weblogic Server. For couple of scenario's, create order is triggered from this UI and submitted to OSM for order fulfillment. The source code for UI was modified to accommodate the security changes and to fetch the user credentials using credstore utility and it uses property files for mapName and keyName to fetch the password securely. Below is the error logged while running the application :

WORKAROUND:

Hard Code user credentials in property file but this solution is not secure.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms