Google Groups no longer supports new Usenet posts or subscriptions. Historical content remains viewable.

Dismiss

domain trust problems

1 view

Skip to first unread message

Webb Morris

unread,

Oct 13, 2004, 4:34:40 PM10/13/04

This has been driving me up a wall, so hopefully someone here can help me out.

My situation is that I have to Weblogic 8.1 sp2 servers running on two different machines. On machine 1, I have domain1 under which is running server with application1. On machine 2, I have domain2 under which is running server with application2.

Application1 is protected with user/group/role. Application2 has no such protection. Application1 uses Application2.

When a client of application1 successfully makes a call to the application providing user/password, application1 fails while trying to connect to application2.

I have done the whole domain trust security procedure in which you set the credentials for both servers to the same value, however, this hasn't helped.

Application2 still complains that the user that was authenticated on appication1 is not trusted. I get the following error:

BEA-080003 Oct 13, 2004 3:37:04 PM EDT Warning RMI RuntimeException thrown by rmi server: weblogic.jndi.interna
l.AdminRoleBasedDispatchServerRef@9 - hostID: '-630935724315
7626782S:10.0.218.214:[7001,7001,-1,-1,7001,-1,-1,0,0]:mydom
ain:myserver', oid: '9', implementation: 'weblogic.jndi.inte
rnal.RootNamingNode@dccfab

java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[ccuser, CCGroup].
java.lang.SecurityException: [Security:090398]Invalid Subject: principals=[ccuser, CCGroup]
at weblogic.security.service.SecurityServiceManager.seal(SecurityServiceManager.java:682)
at weblogic.rjvm.MsgAbbrevInputStream.getSubject(MsgAbbrevInputStream.java:182)
at weblogic.rmi.internal.BasicServerRef.acceptRequest(BasicServerRef.java:825)
at weblogic.rmi.internal.BasicServerRef.dispatch(BasicServerRef.java:300)
at weblogic.rjvm.RJVMImpl.dispatchRequest(RJVMImpl.java:923)
at weblogic.rjvm.RJVMImpl.dispatch(RJVMImpl.java:844)
at weblogic.rjvm.ConnectionManagerServer.handleRJVM(ConnectionManagerServer.java:222)
at weblogic.rjvm.ConnectionManager.dispatch(ConnectionManager.java:794)
at weblogic.rjvm.t3.T3JVMConnection.dispatch(T3JVMConnection.java:570)
at weblogic.socket.NTSocketMuxer.processSockets(NTSocketMuxer.java:105)
at weblogic.socket.SocketReaderRequest.execute(SocketReaderRequest.java:32)
at weblogic.kernel.ExecuteThread.execute(ExecuteThread.java:197)
at weblogic.kernel.ExecuteThread.run(ExecuteThread.java:170)

As you can see, the user for application1 is "ccuser" and is in group "CCGroup". Please help.

Seshi Reddy Paturi

unread,

Oct 13, 2004, 7:05:21 PM10/13/04

Where are you getting that securty error? is it coming at application1 level or application2 level?
It looks like you are unable to make a connection to application1.
Have you created any security policies for application1?
Is it possible for you to post your application.xml?
Regards,
Seshi

0 new messages