Login
Register
Search
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Forums
Infor / Lawson Platforms
S3 Security
Lawson Security timeout after new install
Home
Forums
Jobs
LawsonGuru
LawsonGuru Letter
LawsonGuru Blog
Worthwhile Reading
Infor Lawson News Feed
Store
Store FAQs
About
Who's On?
Membership:
Latest:
John Bonin
Past 24 Hours:
0
Prev. 24 Hours:
0
Overall:
5270
People Online:
Visitors:
391
Members:
0
Total:
391
Online Now:
New Topics
Lawson S3 Procurement
Tolerance Settings
3/31/2025 2:01 PM
I've been trying to set a tolerance for some t
Dealing with Lawson / Infor
Printing Solutions other than MHC
3/27/2025 1:00 PM
What are others using for printing solutions besid
Lawson S3 Procurement
Green check marks in Lawson 9.0.1
3/20/2025 4:55 PM
Hi, How to remove green check mark on items when o
Lawson S3 HR/Payroll/Benefits
Pay Rate History to Show All Positions
2/26/2025 3:34 PM
Does anyone know how to modify payratehistory.htm
Infor CloudSuite
How to build a Pre-Prod tenant
2/7/2025 1:28 AM
After we finished our implementation and ended our
Lawson S3 Procurement
Browser issue with RQC Shopping
1/28/2025 5:49 PM
Since the recent Chrome/Edge updates, our RQC shop
Lawson S3 Procurement
S3-Procurement New Company
1/22/2025 10:38 PM
My Accounting Department has created a new Company
S3 Customization/Development
JUSTIFIED RIGHT
1/15/2025 7:41 PM
Is there a way in Lawson COBOL to make a character
S3 Systems Administration
ADFS certificate - new cert
12/3/2024 9:38 PM
The certificates on the windows boxes expired and
Lawson S3 HR/Payroll/Benefits
Post Tax Benefit Plan Table
11/14/2024 9:16 PM
Hi, totally new to Laswon. I have a repor
Top Forum Posters
Name
Points
Greg Moeller
4184
David Williams
3349
JonA
3291
Kat V
2984
Woozy
1973
Jimmy Chiu
1883
Kwane McNeal
1437
Ragu Raghavan
1375
Roger French
1315
mark.cook
1244
Forums
Filtered Topics
Unanswered
Unresolved
Announcements
Active Topics
Most Liked
Most Replies
Search Forums
Search
Advanced Search
Topics
Posts
Prev
Next
Forums
Infor / Lawson Platforms
S3 Security
Lawson Security timeout after new install
Please
login
to post a reply.
10 Replies
0
Subscribed to this topic
16 Subscribed to this forum
Sort:
Oldest First
Most Recent First
Author
Messages
John Costa
Veteran Member
Posts: 154
12/30/2011 1:39 PM
Hey folks,
I'm hoping a Lawson Security guru can help me out here.
I'm in the process of building a new environment based on the following:
Windows Server 2008, 64-bit
LDAP: Microsoft AD-LDS (residing on the same server)
IBM WebSphere 7.0.0.19
Lawson Core Technology 9.0.1.9
At this time, the only components that have been installed is the Core Technology and the Security Administrator application. I'm trying to log into the Security Administrator for the first time. After entering my credentials, it appears to hang and I get a dialog box several minutes later indicating a call to the server has timed out. After this error, several more minutes pass and I then get an error indicating "type mismatch". When navigating to the "Privelaged Identities" area, I get a window stating "User Maintenance Exception - Exception reading identity."
Checking the LASE.log file, there are multiple errors indcating the following:
WARNING: Undefined MessageProducer: SecurityAuthenLogger!
WARNING: Undefined MessageProducer: SecurityRMLogger!
WARNING: Undefined MessageProducer: SecurityEventLogger!
WARNING: Undefined MessageProducer: RemoteImplLogger!
This is followed by several java exceptions indicating problems with "SecurityEventHandler #11", "SecurityEventHandler #12", and "SecurityEventHandler #13".
Any suggetions here as to what the problem might be or what I can look at?
John Henley
Posts: 3351
12/30/2011 1:54 PM
Split
You can ignore these:
WARNING: Undefined MessageProducer: SecurityAuthenLogger!
WARNING: Undefined MessageProducer: SecurityRMLogger!
WARNING: Undefined MessageProducer: SecurityEventLogger!
WARNING: Undefined MessageProducer: RemoteImplLogger!
It sounds like you have a corrupt encrypted password in the ADAM data.
When you built the new environment,
1. did you install Bouncy Castle and run regression tests against both the Sun Java JDK -AND- the WebSphere JDK ?
2. did you create a new LDS/ADAM instance, or are you trying to use the one from another environment?
Try exporting user identities from ssoconfig, and see if you get any errors during the export.
John Costa
Veteran Member
Posts: 154
12/30/2011 2:29 PM
Split
John,
Thanks for the quick reply.
The bouncy castle regression tests completed successfully and I specified PBEWITHSHAANDTWOFISH-CBC encryption during the install.
This is a server that was used for Lawson previously and I removed the old environment and LDAP before starting fresh again. The old AD-LDS instance was deleted and a new one created.
I am able to access my LDAP using my LDAP browser and I was able to extract my services and identities using SSOCONFIG.
Jimmy Chiu
Veteran Member
Posts: 641
12/30/2011 2:43 PM
Split
Can you check the domain account that you associated with during the loaduser step for the online privileged identity? By any chance it got disabled? It's usually UID3.
Jimmy Chiu
Veteran Member
Posts: 641
12/30/2011 2:48 PM
Split
WARNING: Undefined MessageProducer: SecurityEventLogger!
WARNING: Undefined MessageProducer: RemoteImplLogger!
These two error warnings are normal, they are related to M3 apps according to the lawson engineer I worked with on these warnings.
John Costa
Veteran Member
Posts: 154
12/30/2011 2:55 PM
Split
Jimmy,
I did not create an online privileged identity as all of our users have individual domain user IDs, so I have not run the "loadusers" command as specified in the post-install steps of the environment install guide. I was about to create the "BATCH" privileged identity when I discovered the problem with Lawson Security.
John Henley
Posts: 3351
12/30/2011 3:15 PM
Split
If you are getting the 'type mismatch' error and having login issues before you go to the "Privileged Identities" area, your issue isn't with "privileged identities", but with LS/RM as a whole. Are you able to run the SSO smoketest?
John Costa
Veteran Member
Posts: 154
12/30/2011 3:38 PM
Split
John - Yes, all three SSO smoke tests complete successfully.
John Henley
Posts: 3351
12/30/2011 4:15 PM
Split
So the only problem you are having is with LSA? Can you run /server/Profile ? Have you installed portal yet?
John Costa
Veteran Member
Posts: 154
12/30/2011 5:04 PM
Split
John - All of the IOS smoketests fail due to a java error. I have not yet installed Portal. All that's installed on the system is the Core Environment and the Lawson Security Administrator.
Maybe I should try deleting the enterprise applications from WebSphere and reinstall them?
John Costa
Veteran Member
Posts: 154
12/30/2011 7:04 PM
Split
I fixed the problem!
It turns out my environment license file was missing. Apparently, when I tried to update the existing license file from a backup, there was a problem accessing the backup file. Unfortunately, what I didn't realize was that the existing license file was deleted while I was trying to restore the backup. As a result, my environment was trying to start with no valid license file in place. I determined this after reviewing the various log files and found none of the services (ladb, lajs, etc.) were starting correctly.
Correctly restoring the license file and restarting my environment corrected the issue. Thanks folks for trying to help. Have a happy new year.
Please
login
to post a reply.