apps-infra

    Forum Stats

  • 3,873,697 Users
  • 2,266,629 Discussions
  • 7,911,601 Comments

Discussions

Unable to add security token for identity

658623
658623 Member Posts: 4
edited Sep 9, 2008 9:05AM in WebLogic Portal
Hello All,



In the WebLogic Portal 10.2 we can add “Remote Producers” using the portal administration console on the Admin Server ONLY, while we can’t add this “Remote Producers” using portal administration console deployed on the managed server, and we got the below error:



com.bea.jsptools.portal.helpers.wsrp.AddProducerControlException: java.rmi.RemoteException: Remote service invocation failed; nested exception is:

weblogic.xml.crypto.wss.WSSecurityException: Unable to add security token for identity

at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper.getProducerForWsdl(AddProducerHelper.java:766)

at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper.access$100(AddProducerHelper.java:63)

at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper$FindProducers.producerWsdl(AddProducerHelper.java:261)

at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper$FindProducers.run(AddProducerHelper.java:241)

at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.runAction(AddProducerWizardController.java:628)

at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.doIfValid(AddProducerWizardController.java:604)

at portalTools.definitions.portletProducers.wizard.AddProducerWizardController.selectProducerAction(AddProducerWizardController.java:185)

at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)

at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:39)

at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:25)

at java.lang.reflect.Method.invoke(Method.java:585)

at org.apache.beehive.netui.pageflow.FlowController.invokeActionMethod(FlowController.java:879)

at org.apache.beehive.netui.pageflow.FlowController.getActionMethodForward(FlowController.java:809)

at org.apache.beehive.netui.pageflow.FlowController.internalExecute(FlowController.java:478)

at org.apache.beehive.netui.pageflow.PageFlowController.internalExecute(PageFlowController.java:306)

at global.internal.AbstractBaseController.internalExecute(AbstractBaseController.java:360)

at org.apache.beehive.netui.pageflow.FlowController.execute(FlowController.java:336)

at org.apache.beehive.netui.pageflow.internal.FlowControllerAction.execute(FlowControllerAction.java:52)

at org.apache.struts.action.RequestProcessor.processActionPerform(RequestProcessor.java:431)

at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.access$201(PageFlowRequestProcessor.java:97)

at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor$ActionRunner.execute(PageFlowRequestProcessor.java:2044)

at org.apache.beehive.netui.pageflow.interceptor.action.internal.ActionInterceptors.wrapAction(ActionInterceptors.java:91)

at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processActionPerform(PageFlowRequestProcessor.java:2116)

at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:236)

at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.processInternal(PageFlowRequestProcessor.java:556)

at org.apache.beehive.netui.pageflow.PageFlowRequestProcessor.process(PageFlowRequestProcessor.java:853)

at org.apache.beehive.netui.pageflow.AutoRegisterActionServlet.process(AutoRegisterActionServlet.java:631)

at org.apache.beehive.netui.pageflow.PageFlowActionServlet.process(PageFlowActionServlet.java:158)

at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)

at org.apache.beehive.netui.pageflow.PageFlowUtils.strutsLookup(PageFlowUtils.java:1199)

at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.executeAction(ScopedContentCommonSupport.java:686)

at com.bea.portlet.adapter.scopedcontent.ScopedContentCommonSupport.processActionInternal(ScopedContentCommonSupport.java:142)

at com.bea.portlet.adapter.scopedcontent.PageFlowStubImpl.processAction(PageFlowStubImpl.java:106)

at com.bea.portlet.adapter.NetuiActionHandler.raiseScopedAction(NetuiActionHandler.java:111)

at com.bea.netuix.servlets.controls.content.NetuiContent.raiseScopedAction(NetuiContent.java:181)

at com.bea.netuix.servlets.controls.content.NetuiContent.raiseScopedAction(NetuiContent.java:167)

at com.bea.netuix.servlets.controls.content.NetuiContent.handlePostbackData(NetuiContent.java:225)

at com.bea.netuix.nf.ControlLifecycle$2.visit(ControlLifecycle.java:180)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:324)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walkRecursive(ControlTreeWalker.java:334)

at com.bea.netuix.nf.ControlTreeWalker.walk(ControlTreeWalker.java:130)

at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:395)

at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:361)

at com.bea.netuix.nf.Lifecycle.processLifecycles(Lifecycle.java:352)

at com.bea.netuix.nf.Lifecycle.runInbound(Lifecycle.java:184)

at com.bea.netuix.nf.Lifecycle.run(Lifecycle.java:159)

at com.bea.netuix.servlets.manager.UIServlet.runLifecycle(UIServlet.java:388)

at com.bea.netuix.servlets.manager.UIServlet.doPost(UIServlet.java:258)

at com.bea.netuix.servlets.manager.UIServlet.service(UIServlet.java:199)

at com.bea.netuix.servlets.manager.SingleFileServlet.service(SingleFileServlet.java:251)

at com.bea.netuix.servlets.manager.PortalServlet.service(PortalServlet.java:686)

at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)

at weblogic.servlet.internal.StubSecurityHelper$ServletServiceAction.run(StubSecurityHelper.java:226)

at weblogic.servlet.internal.StubSecurityHelper.invokeServlet(StubSecurityHelper.java:124)

at weblogic.servlet.internal.ServletStubImpl.execute(ServletStubImpl.java:283)

at weblogic.servlet.internal.TailFilter.doFilter(TailFilter.java:26)

at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)

at com.bea.jsptools.servlet.PagedResultServiceFilter.doFilter(PagedResultServiceFilter.java:82)

at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)

at com.bea.portal.tools.servlet.http.HttpContextFilter.doFilter(HttpContextFilter.java:60)

at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)

at com.bea.p13n.servlets.PortalServletFilter.doFilter(PortalServletFilter.java:336)

at weblogic.servlet.internal.FilterChainImpl.doFilter(FilterChainImpl.java:42)

at weblogic.servlet.internal.WebAppServletContext$ServletInvocationAction.run(WebAppServletContext.java:3393)

at weblogic.security.acl.internal.AuthenticatedSubject.doAs(AuthenticatedSubject.java:321)

at weblogic.security.service.SecurityManager.runAs(Unknown Source)

at weblogic.servlet.internal.WebAppServletContext.securedExecute(WebAppServletContext.java:2140)

at weblogic.servlet.internal.WebAppServletContext.execute(WebAppServletContext.java:2046)

at weblogic.servlet.internal.ServletRequestImpl.run(ServletRequestImpl.java:1366)

at weblogic.work.ExecuteThread.execute(ExecuteThread.java:200)

at weblogic.work.ExecuteThread.run(ExecuteThread.java:172)

Caused by: java.rmi.RemoteException: Remote service invocation failed; nested exception is:

weblogic.xml.crypto.wss.WSSecurityException: Unable to add security token for identity

at com.bea.wsrp.proxy.ProxyBase.dispatch(ProxyBase.java:675)

at com.bea.wsrp.proxy.ProxyBase.sendMessage(ProxyBase.java:551)

at com.bea.wsrp.proxy.ProxyBase.dispatch(ProxyBase.java:689)

at com.bea.wsrp.proxy.WseeProxy.dispatch(WseeProxy.java:76)

at com.bea.wsrp.proxy.ProxyBase.invoke(ProxyBase.java:459)

at $Proxy108.getServiceDescription(Unknown Source)

at com.bea.wsrp.client.ProducerAgentImpl.getServiceDescription(ProducerAgentImpl.java:132)

at com.bea.wsrp.client.ProducerAgentImpl.getServiceDescription(ProducerAgentImpl.java:80)

at com.bea.wsrp.client.ProducerAgentImpl.getServiceDescription(ProducerAgentImpl.java:68)

at com.bea.wsrp.consumer.management.ProducerManagerImpl.getProducerServiceDescription(ProducerManagerImpl.java:733)

at com.bea.jsptools.portal.helpers.wsrp.ProducerRegistryControlImpl.getServiceDescription(ProducerRegistryControlImpl.java:206)

at com.bea.jsptools.portal.helpers.wsrp.ProducerRegistryControlBean.getServiceDescription(ProducerRegistryControlBean.java:135)

at com.bea.jsptools.portal.helpers.wsrp.AddProducerHelper.getProducerForWsdl(AddProducerHelper.java:758)

... 82 more

Caused by: weblogic.xml.crypto.wss.WSSecurityException: Unable to add security token for identity

at weblogic.wsee.security.wss.SecurityPolicyDriver.processIdentity(SecurityPolicyDriver.java:175)

at weblogic.wsee.security.wss.SecurityPolicyDriver.processOutbound(SecurityPolicyDriver.java:73)

at weblogic.wsee.security.WssClientHandler.processOutbound(WssClientHandler.java:70)

at weblogic.wsee.security.WssClientHandler.processRequest(WssClientHandler.java:54)

at weblogic.wsee.security.WssHandler.handleRequest(WssHandler.java:72)

at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:123)

at weblogic.wsee.handler.HandlerIterator.handleRequest(HandlerIterator.java:99)

at weblogic.wsee.ws.dispatch.client.ClientDispatcher.dispatch(ClientDispatcher.java:101)

at com.bea.wsrp.proxy.ProxyBase.dispatch(ProxyBase.java:639)

... 94 more

Back


Any one face this issue before?

Thanks,
Mostafa Ismail
Tagged:

Answers

  • 653657
    653657 Member Posts: 71
    edited Sep 9, 2008 7:31AM
    Mostafa ,

    This points to a misconfiguration of your security. Possible causes are:
    * There is not a valid RSA key to sign the SAML token with.
    * The SAML CredentialMapper is missing
    * There is no Relying Party (rp) configured for SAML Credential Mapper that matches your producer
    * The producer is using User Name Token and you have no configured the DefaultCredentialMapper to allow for UserNameToken.

    Good Luck,

    Nate

    Edited by: user650654 on Sep 9, 2008 4:31 AM
  • 658623
    658623 Member Posts: 4
    Thanks very much Nate for your response.

    But do you think why we can add “Remote Producer” on the AdminServer?


    Thanks,
    Mostafa
  • 653657
    653657 Member Posts: 71
    I would have to guess the nodes' security was configured differently.

    Nate
This discussion has been closed.
apps-infra