Overview
You have configured AD (LDAP) authentication for your Aurea Monitor Management Server (AMS). The LDAP login works but your event log is full of errors about:
APPL0063: An Exception has been caught
SECU1012: Unable to find the user account for request identities
The full exception stack:
<event>
<date>2021/03/02 05:13:22.121+0100</date><severity>ERROR</severity><reqid></reqid><thread>JettyHttpListener0-21</thread><user>Superuser/Superuser</user><runid>1612960070902</runid><subsys>APPLICATION</subsys><logid>e0919cc5-4b89-47bc-842f-aaa9bb7c0033</logid><msgid>APPL0063</msgid>
<msg>APPL0063: An Exception has been caught
SECU1012: Unable to find the user account for request identities
at com.actional.soapstation.security.directoryservice.LDAPDirectoryService$1LdapTx.execute(LDAPDirectoryService.java:712)
at com.actional.soapstation.security.directoryservice.LDAPDirectoryService.execute(LDAPDirectoryService.java:571)
at com.actional.soapstation.security.directoryservice.LDAPDirectoryService.getAttributes(LDAPDirectoryService.java:718)
at com.actional.soapstation.security.directoryservice.ActiveDirectoryImpl.getUser(ActiveDirectoryImpl.java:87)
at com.actional.soapstation.security.directoryservice.LDAPCacheEvents.createCacheItem(LDAPCacheEvents.java:68)
at com.actional.soapstation.security.directoryservice.LDAPCacheEvents.createCacheItem(LDAPCacheEvents.java:35)
at com.actional.util.AbstractCache$CachedItem.init(AbstractCache.java:212)
at com.actional.util.AbstractCache$CachedItem.getDataWithInit(AbstractCache.java:193)
at com.actional.util.Cache.lookup(Cache.java:208)
at com.actional.soapstation.security.directoryservice.LDAPCachedServiceImpl.getUser(LDAPCachedServiceImpl.java:217)
at com.actional.soapstation.security.DirectoryServiceAuthenticator.getUser(DirectoryServiceAuthenticator.java:197)
at sun.reflect.GeneratedMethodAccessor159.invoke(Unknown Source)
at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43)
at java.lang.reflect.Method.invoke(Method.java:498)
at com.actional.security.plugin.proxy.PluginProxy$Handler.invoke(PluginProxy.java:149)
at com.sun.proxy.$Proxy4.getUser(Unknown Source)
at com.actional.tieredadmin.GroupsProvider.retrieveUserGroups(GroupsProvider.java:138)
at com.actional.tieredadmin.GroupsProvider.getUserGroups(GroupsProvider.java:62)
at com.actional.AccessControlHelper.doSetState(AccessControlHelper.java:339)
at com.actional.AccessControlHelper.setState(AccessControlHelper.java:230)
at com.actional.servlet.AuthFilter.processRequest(AuthFilter.java:87)
at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:68)
at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at com.actional.j2ee.SessionFilter.doFilter(SessionFilter.java:53)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75)
at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75)
at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at com.actional.servlet.ImpersonateFilter.doFilter(ImpersonateFilter.java:113)
at com.actional.servlet.ImpersonateFilter.doFilter(ImpersonateFilter.java:86)
at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75)
at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86)
at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357)
at org.mortbay.jetty.servlet.WebApplicationHandler.dispatch(WebApplicationHandler.java:306)
at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:582)
at org.mortbay.http.HttpContext.handle(HttpContext.java:1861)
at org.mortbay.jetty.servlet.WebApplicationContext.handle(WebApplicationContext.java:526)
at org.mortbay.http.HttpContext.handle(HttpContext.java:1811)
at org.mortbay.http.HttpServer.service(HttpServer.java:886)
at org.mortbay.http.HttpConnection.service(HttpConnection.java:789)
at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:960)
at org.mortbay.http.SocketChannelListener.handle(SocketChannelListener.java:326)
at org.mortbay.util.ThreadPool$PoolThread.run(ThreadPool.java:526)
</msg>
</event>
Solution
- Open your AMS Console
- Go to: Configure -> Platform -> Admin Roles
- or just use this URL: http://<yourAMSserver>:4040/lgserver/admin/configure/tieredadmin/tieredadmin_list.jsp
- Edit the LDAP Group Attribute Mapping
- Select "none" as the LDAP
- Remove the value of the Group Attribute under the LDAP Group Attribute section.
- Select OK to save the changes done to LDAP Group Attribute Mapping
- Restart your AMS
Testing
The error should be gone after AMS restart.