Oracle Analytics Cloud and Server

Home Oracle Analytics Oracle Analytics Forums Oracle Analytics Cloud and Server Oracle Analytics Cloud and Server

Categories

Welcome to the Oracle Analytics Community: Please complete your User Profile and upload your Profile Picture

BI Publisher 11.1.1.7 : user don't have permission to access to this floder

Received Response
31
Views
2
Comments
Cornelia Kapl
Cornelia Kapl Rank 3 - Community Apprentice
in Oracle Analytics Cloud and Server

Summary

BI Publisher 11.1.1.7 : user don't have permission to access to this floder

Content

I have a standalone BI publisher 11.1.1.7 on solaris enivrement

when i create a new report i have an error when i want to select the datamodel "user don't have permission to access to this floder" but i have the permission to create a new datamodel and to modify an existing report ..

in bi_server1.log and AdminServer.log i have this error :

javax.management.RuntimeMBeanException: java.lang.SecurityException: MBean operation access denied.

  MBean: com.oracle.jps:type=JpsCredentialStore

  Operation: getPortableCredential(java.lang.String, java.lang.String)

  Detail: Access denied. Required roles: Admin, executing subject: principals=[OracleSystemUser, OracleSystemGroup]

.

javax.management.RuntimeMBeanException: java.lang.SecurityException: MBean operation access denied.

  MBean: com.oracle.jps:type=JpsCredentialStore

  Operation: getPortableCredential(java.lang.String, java.lang.String)

  Detail: Access denied. Required roles: Admin, executing subject: principals=[OracleSystemUser, OracleSystemGroup]

  at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.rethrow(DefaultMBeanServerInterceptor.java:856)

  at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.rethrowMaybeMBeanException(DefaultMBeanServerInterceptor.java:869)

  at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:838)

  at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:761)

  at weblogic.management.mbeanservers.domainruntime.internal.FederatedMBeanServerInterceptor.invoke(FederatedMBeanServerInterceptor.java:349)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.JMXContextInterceptor.invoke(JMXContextInterceptor.java:263)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.SecurityMBeanMgmtOpsInterceptor.invoke(SecurityMBeanMgmtOpsInterceptor.java:65)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.SecurityInterceptor.invoke(SecurityInterceptor.java:444)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServer.invoke(WLSMBeanServer.java:323)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11$1.run(JMXConnectorSubjectForwarder.java:663)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11.run(JMXConnectorSubjectForwarder.java:661)

  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.invoke(JMXConnectorSubjectForwarder.java:654)

  at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1427)

  at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)

  at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1265)

  at java.security.AccessController.doPrivileged(Native Method)

  at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1367)

  at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:788)

  at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)

  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:667)

  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:522)

  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)

  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)

  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)

  at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)

  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)

  at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)

Caused By: java.lang.SecurityException: MBean operation access denied.

  MBean: com.oracle.jps:type=JpsCredentialStore

  Operation: getPortableCredential(java.lang.String, java.lang.String)

  Detail: Access denied. Required roles: Admin, executing subject: principals=[OracleSystemUser, OracleSystemGroup]

  at oracle.as.jmx.framework.generic.spi.security.AbstractMBeanSecurityInterceptor.checkOperationAccess(AbstractMBeanSecurityInterceptor.java:310)

  at oracle.as.jmx.framework.generic.spi.security.AbstractMBeanSecurityInterceptor.internalInvoke(AbstractMBeanSecurityInterceptor.java:189)

  at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)

  at oracle.security.jps.ee.jmx.JpsJmxInterceptor$2.run(JpsJmxInterceptor.java:358)

  at java.security.AccessController.doPrivileged(Native Method)

  at oracle.security.jps.util.JpsSubject.doAsPrivileged(JpsSubject.java:324)

  at oracle.security.jps.ee.util.JpsPlatformUtil.runJaasMode(JpsPlatformUtil.java:460)

  at oracle.security.jps.ee.jmx.JpsJmxInterceptor.internalInvoke(JpsJmxInterceptor.java:374)

  at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)

  at oracle.as.jmx.framework.generic.spi.interceptors.ContextClassLoaderMBeanInterceptor.internalInvoke(ContextClassLoaderMBeanInterceptor.java:103)

  at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)

  at oracle.as.jmx.framework.generic.spi.interceptors.MBeanRestartInterceptor.internalInvoke(MBeanRestartInterceptor.java:116)

  at oracle.as.jmx.framework.generic.spi.interceptors.AbstractMBeanInterceptor.doInvoke(AbstractMBeanInterceptor.java:252)

  at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterMBean.invoke(OracleStandardEmitterMBean.java:924)

  at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterConfigMBean.doInvoke(OracleStandardEmitterConfigMBean.java:398)

  at oracle.as.jmx.framework.standardmbeans.spi.OracleStandardEmitterConfigMBean.invoke(OracleStandardEmitterConfigMBean.java:365)

  at com.sun.jmx.interceptor.DefaultMBeanServerInterceptor.invoke(DefaultMBeanServerInterceptor.java:836)

  at com.sun.jmx.mbeanserver.JmxMBeanServer.invoke(JmxMBeanServer.java:761)

  at weblogic.management.mbeanservers.domainruntime.internal.FederatedMBeanServerInterceptor.invoke(FederatedMBeanServerInterceptor.java:349)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.JMXContextInterceptor.invoke(JMXContextInterceptor.java:263)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.SecurityMBeanMgmtOpsInterceptor.invoke(SecurityMBeanMgmtOpsInterceptor.java:65)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase$16.run(WLSMBeanServerInterceptorBase.java:449)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServerInterceptorBase.invoke(WLSMBeanServerInterceptorBase.java:447)

  at weblogic.management.mbeanservers.internal.SecurityInterceptor.invoke(SecurityInterceptor.java:444)

  at weblogic.management.jmx.mbeanserver.WLSMBeanServer.invoke(WLSMBeanServer.java:323)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11$1.run(JMXConnectorSubjectForwarder.java:663)

  at java.security.AccessController.doPrivileged(Native Method)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder$11.run(JMXConnectorSubjectForwarder.java:661)

  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)

  at weblogic.management.mbeanservers.internal.JMXConnectorSubjectForwarder.invoke(JMXConnectorSubjectForwarder.java:654)

  at javax.management.remote.rmi.RMIConnectionImpl.doOperation(RMIConnectionImpl.java:1427)

  at javax.management.remote.rmi.RMIConnectionImpl.access$200(RMIConnectionImpl.java:72)

  at javax.management.remote.rmi.RMIConnectionImpl$PrivilegedOperation.run(RMIConnectionImpl.java:1265)

  at java.security.AccessController.doPrivileged(Native Method)

  at javax.management.remote.rmi.RMIConnectionImpl.doPrivilegedOperation(RMIConnectionImpl.java:1367)

  at javax.management.remote.rmi.RMIConnectionImpl.invoke(RMIConnectionImpl.java:788)

  at javax.management.remote.rmi.RMIConnectionImpl_WLSkel.invoke(Unknown Source)

  at weblogic.rmi.internal.BasicServerRef.invoke(BasicServerRef.java:667)

  at weblogic.rmi.internal.BasicServerRef$1.run(BasicServerRef.java:522)

  at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:363)

  at weblogic.security.service.SecurityManager.runAs(SecurityManager.java:146)

  at weblogic.rmi.internal.BasicServerRef.handleRequest(BasicServerRef.java:518)

  at weblogic.rmi.internal.wls.WLSExecuteRequest.run(WLSExecuteRequest.java:118)

  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:256)

  at weblogic.work.ExecuteThread.run(ExecuteThread.java:221)

Caused By: java.lang.SecurityException: Access denied. Required roles: Admin, executing subject: principals=[OracleSystemUser, OracleSystemGroup]

bi_publisher.png

Answers

  • YGUTTIKONDA
    YGUTTIKONDA Rank 6 - Analytics Lead

    Hello,

    What is the user and what kind of roles are assigned to this user ?? Please check the bipublisher.log which may have more info..

    also you statement "i have the permission to create a new datamodel and to modify an existing report .." is not clear ..

    can you try creating a new user and assing Administrator roles and try ??

    YG

  • Pavle Kostic
    Pavle Kostic Rank 3 - Community Apprentice

    Try adding roles to parent folder, for view/open/traverse etc. and propagate to subfolders/items. Sometimes roles get misconfigured on parent/child folders/items for strange reasons.

    I had similar issues with some folder where I have complete control, even creation and deletion of reports / data models work but I was somehow missing Traverse privilege and then was not able to view/edit objects. (even i was able to execute / run them!)