LTPA令牌过期后,管理控制台将引发HTTP错误500

时间:2018-07-05 14:25:29

标签: authentication ldap websphere

我有一个运行WAS ND 9.0.0.3。的新环境。

Global security > User account repository下,我们将LDAP存储库配置为向用户和组提供管理登录。

我可以无问题地登录到控制台,但是几分钟后,如果没有活动,会话将终止,并且当我尝试重新登录时,控制台将引发HTTP错误500。

在dmgr日志文件中,报告了以下条目:

[7/5/18 14:18:17:153 CEST] 00000135 LTPAServerObj W   SECJ0371W: Validation of the LTPA token failed because the token expired with the following info: Token expiration Date: Thu Jul 05 14:16:00 CEST 2018, current Date: Thu Jul 05 14:18:17 CEST 2018 Token attributes:  username=user:xxx/CN=xxx\, xxx (001-Extern),OU=Users,OU=_GlobalResources,OU=ESTR,DC=xxx,DC=xxx,DC=xxxx.. This warning might indicate expected behavior. Please refer to technote at http://www-01.ibm.com/support/docview.wss?uid=swg21594981. To discontinue logging of this message, see property com.ibm.websphere.security.ltpa.disableSECJ0371W description.
[7/5/18 14:18:17:153 CEST] 00000135 WASSessionCor E SessionContext checkSecurity SESN0008E: A user authenticated as anonymous has attempted to access a session owned by user:xxxxx/CN=xxxxx\, xxxxx (001-Extern),OU=Users,OU=_GlobalResources,OU=ESTR,DC=xxxxx,DC=xxxxx,DC=xxxxx.
[7/5/18 14:18:17:153 CEST] 00000135 LocalTranCoor E   WLTC0017E: Resources rolled back due to setRollbackOnly() being called.
[7/5/18 14:18:17:154 CEST] 00000135 webapp        E com.ibm.ws.webcontainer.webapp.WebApp logServletError SRVE0293E: [Servlet Error]-[GenericServletWrapper]: com.ibm.websphere.servlet.session.UnauthorizedSessionRequestException: SESN0008E: A user authenticated as anonymous has attempted to access a session owned by user:xxxxx/CN=xxxxxx\, xxxxxx (001-Extern),OU=Users,OU=_GlobalResources,OU=ESTR,DC=xxxxx,DC=xxxxx,DC=xxxxx.
        at com.ibm.ws.session.SessionContext.checkSecurity(SessionContext.java:1412)
        at com.ibm.ws.session.SessionContext.isValid(SessionContext.java:915)
        at com.ibm.ws.webcontainer.srt.SRTRequestContext.getSession(SRTRequestContext.java:101)
        at com.ibm.ws.webcontainer.srt.SRTServletRequest.getSession(SRTServletRequest.java:2265)
        at com.ibm.ws.webcontainer.srt.SRTServletRequest.getSession(SRTServletRequest.java:2249)
        at javax.servlet.http.HttpServletRequestWrapper.getSession(HttpServletRequestWrapper.java:279)
        at com.ibm.ws.console.core.servlet.WSCUrlFilter.doFilter(WSCUrlFilter.java:156)
        at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:197)
        at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:90)
        at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:969)
        at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1109)
        at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:82)
        at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:963)
        at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1817)
        at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:382)
        at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:465)
        at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:532)
        at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:318)
        at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:88)
        at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1820)
        at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:175)
        at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
        at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
        at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
        at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
        at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:816)
        at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
        at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1892)

我们有一个运行WAS ND 8.0.0.9的较旧环境,该环境对User account repository具有相同的配置。当会话无效时,它还会在dmgr日志文件中报告上述条目,但不会发生HTTP错误500。

此用户帐户存储库配置中是否缺少某些内容?

0 个答案:

没有答案
相关问题
最新问题