5 Replies Latest reply on Jun 10, 2008 11:36 PM by 666705

    Security Authenticator and JAAS configuration in weblogic 9.2

    666705
      Hi


      I have configured custom Security Authenticator named VisionAuthenticator.
      But while restarting the server, it is not able to start server. i am getting the error like below
      <May 15, 2007 4:32:09 PM GMT+05:30> <Critical> <WebLogicServer> <BEA-000362> <Se
      rver failed. Reason:

      There are 1 nested errors:

      weblogic.security.service.SecurityServiceRuntimeException: [Security:090877]Serv
      ice Common JAASAuthenticationService unavailable, see exception text: com.bea.co
      mmon.engine.ServiceInitializationException: java.lang.IllegalArgumentException:
      No Configuration was registered that can handle the configuration named MetreoVi
      sionLogin
      at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
      Authenticator.java:175)
      at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuth
      enticator.java:311)
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.do
      ATN(CommonSecurityServiceManagerDelegateImpl.java:719)
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
      itializeRealm(CommonSecurityServiceManagerDelegateImpl.java:508)
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.lo
      adRealm(CommonSecurityServiceManagerDelegateImpl.java:822)
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
      itializeRealms(CommonSecurityServiceManagerDelegateImpl.java:851)
      at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
      itialize(CommonSecurityServiceManagerDelegateImpl.java:1007)
      at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
      erviceManager.java:849)
      at weblogic.security.SecurityService.start(SecurityService.java:141)
      at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
      at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
      at weblogic.work.ExecuteThread.run(ExecuteThread.java:181)
      Caused by: com.bea.common.engine.ServiceInitializationException: java.lang.Illeg
      alArgumentException: No Configuration was registered that can handle the configu
      ration named MetreoVisionLogin
      at com.bea.common.engine.internal.ServiceEngineImpl.findOrStartService(S
      erviceEngineImpl.java:342)
      at com.bea.common.engine.internal.ServiceEngineImpl.findOrStartService(S
      erviceEngineImpl.java:292)
      at com.bea.common.engine.internal.ServiceEngineImpl.lookupService(Servic
      eEngineImpl.java:263)
      at com.bea.common.engine.internal.ServicesImpl.getService(ServicesImpl.j
      ava:71)
      at weblogic.security.service.SecurityServiceManager.getService(SecurityS
      erviceManager.java:198)
      at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
      Authenticator.java:144)
      ... 11 more
      Caused by: java.lang.IllegalArgumentException: No Configuration was registered t
      hat can handle the configuration named MetreoVisionLogin
      at com.bea.common.security.jdkutils.JAASConfiguration.getAppConfiguratio
      nEntry(JAASConfiguration.java:54)
      at com.metreo.insight.custom.wls.security.VisionAuthenticationProvider.g
      etConfiguration(Unknown Source)
      at com.metreo.insight.custom.wls.security.VisionAuthenticationProvider.g
      etLoginModuleConfiguration(Unknown Source)
      at com.bea.common.security.internal.legacy.service.JAASAuthenticationPro
      viderImpl$V1Wrapper.getLoginModuleConfiguration(JAASAuthenticationProviderImpl.j
      ava:112)
      at com.bea.common.security.internal.legacy.service.JAASAuthenticationPro
      viderImpl$V1Wrapper.supportsAuthentication(JAASAuthenticationProviderImpl.java:1
      03)
      at com.bea.common.security.internal.service.JAASAuthenticationConfigurat
      ionServiceImpl$JAASProviderImpl.useProvider(JAASAuthenticationConfigurationServi
      ceImpl.java:82)
      at com.bea.common.security.internal.service.JAASConfigurationServiceImpl
      .init(JAASConfigurationServiceImpl.java:58)
      at com.bea.common.security.internal.service.JAASAuthenticationConfigurat
      ionServiceImpl.init(JAASAuthenticationConfigurationServiceImpl.java:31)
      at com.bea.common.security.internal.utils.BaseServiceImpl.init(BaseServi
      ceImpl.java:19)
      at com.bea.common.engine.internal.ServiceEngineImpl.findOrStartService(S
      erviceEngineImpl.java:340)
      ... 16 more

      >
      <May 15, 2007 4:32:09 PM GMT+05:30> <Notice> <WebLogicServer> <BEA-000365> <Serv
      er state changed to FAILED>
      <May 15, 2007 4:32:09 PM GMT+05:30> <Error> <WebLogicServer> <BEA-000383> <A cri
      tical service failed. The server will shut itself down>
      <May 15, 2007 4:32:09 PM GMT+05:30> <Notice> <WebLogicServer> <BEA-000365> <Serv
      er state changed to FORCE_SHUTTING_DOWN>


      Please help me to fix this....
        • 1. Re: Security Authenticator and JAAS configuration in weblogic 9.2
          666705
          I don't know if this will help you or not but check out [url http://saloon.javaranch.com/cgi-bin/ubb/ultimatebb.cgi?ubb=next_topic&f=65&t=001300&go=older]. Particularly, see the post third from the bottom that starts with "I found on the dev2dev.bea.com forum..."

          In a nutshell, he added

          -Djava.security.auth.login.config=%WL_HOME%\server\lib\sean_jaas.config

          to startWebLogic and the error went away. You might want to try that.

          --
          Mike
          Weblogic/J2EE Security Blog: http://monduke.com

          --
          Edited by Monduke at 05/15/2007 5:51 AM
          • 2. Re: Security Authenticator and JAAS configuration in weblogic 9.2
            666705
            Hi ,
            I have got the same error and weblogic start-up script (startweblogic.cmd) has -"Djava.security.auth.login.config=" configuration and it is configured with jaas policy file which is in right location and right format.

            The same start-up script with same configuration is still working for weblogic 9.1 version

            Muthu
            • 3. Re: Security Authenticator and JAAS configuration in weblogic 9.2
              666705
              Go to %BEA_Home%\user_projects\domains\security_domain\config url and replace "required" flag to "sufficient" flag in config.xml file as follows.

              <sec:control-flag>SUFFICIENT</sec:control-flag>
              • 4. Re: Security Authenticator and JAAS configuration in weblogic 9.2
                666705
                Hi Everyone

                Has anyone been able to set the Default Authenticator using
                Authenticator.setDefault(myAuthenticator) within WLS v9.2. I am able to get it working outside WLS but it doesn't work inside WLS v9.2. Please help, if there is any solution to this problem. Is there any environment variable that needs to be set or let me know how to load the Authenticator class with WLS.

                Weblogic developers, please help me to provide a solution for this problem within WLS.

                Thanks and Regards
                • 5. Re: Security Authenticator and JAAS configuration in weblogic 9.2
                  666705
                  Hi,

                  I am getting the following error when trying to set up Kerberos delegation with Business Objects XI R2. Essentially, this is trying to point WebLogic 9.2 to a conf file so it uses Kerberos for authenticating a user against Windows Active Directory...


                  <Jun 10, 2008 2:18:57 PM EDT> <Critical> <WebLogicServer> <BEA-000362> <Server f
                  ailed. Reason:

                  There are 1 nested errors:

                  weblogic.security.service.SecurityServiceRuntimeException: [Security:090877]Serv
                  ice Common JAASAuthenticationService unavailable, see exception text: java.lang.
                  SecurityException: Configuration Error:
                  Line 2: expected [controlFlag]
                  at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
                  Authenticator.java:175)
                  at weblogic.security.service.PrincipalAuthenticator.<init>(PrincipalAuth
                  enticator.java:311)
                  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.do
                  ATN(CommonSecurityServiceManagerDelegateImpl.java:719)
                  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
                  itializeRealm(CommonSecurityServiceManagerDelegateImpl.java:508)
                  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.lo
                  adRealm(CommonSecurityServiceManagerDelegateImpl.java:822)
                  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
                  itializeRealms(CommonSecurityServiceManagerDelegateImpl.java:851)
                  at weblogic.security.service.CommonSecurityServiceManagerDelegateImpl.in
                  itialize(CommonSecurityServiceManagerDelegateImpl.java:1007)
                  at weblogic.security.service.SecurityServiceManager.initialize(SecurityS
                  erviceManager.java:849)
                  at weblogic.security.SecurityService.start(SecurityService.java:141)
                  at weblogic.t3.srvr.SubsystemRequest.run(SubsystemRequest.java:64)
                  at weblogic.work.ExecuteThread.execute(ExecuteThread.java:209)
                  at weblogic.work.ExecuteThread.run(ExecuteThread.java:181)
                  Caused by: java.lang.SecurityException: Configuration Error:
                  Line 2: expected [controlFlag]
                  at com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:97)
                  at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)

                  at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstruct
                  orAccessorImpl.java:39)
                  at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingC
                  onstructorAccessorImpl.java:27)
                  at java.lang.reflect.Constructor.newInstance(Constructor.java:494)
                  at java.lang.Class.newInstance0(Class.java:350)
                  at java.lang.Class.newInstance(Class.java:303)
                  at weblogic.security.service.PrincipalAuthenticator.loadConfFileForJVM(P
                  rincipalAuthenticator.java:221)
                  at weblogic.security.service.PrincipalAuthenticator.initialize(Principal
                  Authenticator.java:161)
                  ... 11 more
                  Caused by: java.io.IOException: Configuration Error:
                  Line 2: expected [controlFlag]
                  at com.sun.security.auth.login.ConfigFile.match(ConfigFile.java:494)
                  at com.sun.security.auth.login.ConfigFile.parseLoginEntry(ConfigFile.jav
                  a:337)
                  at com.sun.security.auth.login.ConfigFile.readConfig(ConfigFile.java:308
                  )
                  at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:218)
                  at com.sun.security.auth.login.ConfigFile.init(ConfigFile.java:163)
                  at com.sun.security.auth.login.ConfigFile.<init>(ConfigFile.java:95)
                  ... 19 more



                  Any help will be greatly appreciated!