Java.Security.AccessControlException: Access Denied While Fetching User Password From Credstore in OSM
(Doc ID 2081131.1)
Last updated on OCTOBER 31, 2019
Applies to:Oracle Communications Order and Service Management - Version 7.2.4 and later
Information in this document applies to any platform.
OSM version 18.104.22.168.9
Weblogic Server version - WLS 10.3.6.09 ; Cluster Environment with 2 Managed Servers
Oracle Database 22.214.171.124 - RAC
The error java.security.AccessControlException: access denied is raised by a custom User Interface OSM application when the user name and password are fetched securely from credential store. Credstore utility will help to meet security guidelines and secure the way of retrieving user credentials. Followed the guidelines provided in Section 4 Securing Credentials Required to Access External Systems Communications Order and Service Management System Administrator's Guide, but the issue still persists.
This custom UI was build to create OSM orders and it is basically a WAR file deployed in the Weblogic Server. For couple of scenario's, create order is triggered from this UI and submitted to OSM for order fulfillment. The source code for UI was modified to accommodate the security changes and to fetch the user credentials using credstore utility and it uses property files for mapName and keyName to fetch the password securely. Below is the error logged while running the application :
Hard Code user credentials in property file but this solution is not secure.
To view full details, sign in with your My Oracle Support account.
Don't have a My Oracle Support account? Click to get started!
In this Document