Start a conversation
  1. Actional (Aurea Monitor) Support
  2. Aurea Monitor - Authentication
  3. Articles

AD (LDAP) login works but event log is full with errors about "SECU1012: Unable to find the user account for request identities"

Overview

You have configured AD (LDAP) authentication for your Aurea Monitor Management Server (AMS). The LDAP login works but your event log is full of errors about:

APPL0063: An Exception has been caught
SECU1012: Unable to find the user account for request identities

 

The full exception stack:

<event> 
  <date>2021/03/02 05:13:22.121+0100</date><severity>ERROR</severity><reqid></reqid><thread>JettyHttpListener0-21</thread><user>Superuser/Superuser</user><runid>1612960070902</runid><subsys>APPLICATION</subsys><logid>e0919cc5-4b89-47bc-842f-aaa9bb7c0033</logid><msgid>APPL0063</msgid> 
  <msg>APPL0063: An Exception has been caught 
SECU1012: Unable to find the user account for request identities 
    at com.actional.soapstation.security.directoryservice.LDAPDirectoryService$1LdapTx.execute(LDAPDirectoryService.java:712) 
    at com.actional.soapstation.security.directoryservice.LDAPDirectoryService.execute(LDAPDirectoryService.java:571) 
    at com.actional.soapstation.security.directoryservice.LDAPDirectoryService.getAttributes(LDAPDirectoryService.java:718) 
    at com.actional.soapstation.security.directoryservice.ActiveDirectoryImpl.getUser(ActiveDirectoryImpl.java:87) 
    at com.actional.soapstation.security.directoryservice.LDAPCacheEvents.createCacheItem(LDAPCacheEvents.java:68) 
    at com.actional.soapstation.security.directoryservice.LDAPCacheEvents.createCacheItem(LDAPCacheEvents.java:35) 
    at com.actional.util.AbstractCache$CachedItem.init(AbstractCache.java:212) 
    at com.actional.util.AbstractCache$CachedItem.getDataWithInit(AbstractCache.java:193)       
    at com.actional.util.Cache.lookup(Cache.java:208) 
    at com.actional.soapstation.security.directoryservice.LDAPCachedServiceImpl.getUser(LDAPCachedServiceImpl.java:217) 
    at com.actional.soapstation.security.DirectoryServiceAuthenticator.getUser(DirectoryServiceAuthenticator.java:197)         
    at sun.reflect.GeneratedMethodAccessor159.invoke(Unknown Source) 
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:43) 
    at java.lang.reflect.Method.invoke(Method.java:498) 
    at com.actional.security.plugin.proxy.PluginProxy$Handler.invoke(PluginProxy.java:149) 
    at com.sun.proxy.$Proxy4.getUser(Unknown Source) 
    at com.actional.tieredadmin.GroupsProvider.retrieveUserGroups(GroupsProvider.java:138) 
    at com.actional.tieredadmin.GroupsProvider.getUserGroups(GroupsProvider.java:62) 
     
    at com.actional.AccessControlHelper.doSetState(AccessControlHelper.java:339) 
    at com.actional.AccessControlHelper.setState(AccessControlHelper.java:230) 
    at com.actional.servlet.AuthFilter.processRequest(AuthFilter.java:87) 
    at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:68) 
    at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at com.actional.j2ee.SessionFilter.doFilter(SessionFilter.java:53) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75) 
    at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75) 
    at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at com.actional.servlet.ImpersonateFilter.doFilter(ImpersonateFilter.java:113) 
    at com.actional.servlet.ImpersonateFilter.doFilter(ImpersonateFilter.java:86) 
    at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at com.actional.servlet.BaseFilter.doFilter(BaseFilter.java:75) 
    at com.actional.j2ee.J2EEFilter.doFilter(J2EEFilter.java:86) 
    at org.mortbay.jetty.servlet.WebApplicationHandler$Chain.doFilter(WebApplicationHandler.java:357) 
    at org.mortbay.jetty.servlet.WebApplicationHandler.dispatch(WebApplicationHandler.java:306) 
    at org.mortbay.jetty.servlet.ServletHandler.handle(ServletHandler.java:582) 
    at org.mortbay.http.HttpContext.handle(HttpContext.java:1861) 
    at org.mortbay.jetty.servlet.WebApplicationContext.handle(WebApplicationContext.java:526) 
    at org.mortbay.http.HttpContext.handle(HttpContext.java:1811) 
    at org.mortbay.http.HttpServer.service(HttpServer.java:886) 
    at org.mortbay.http.HttpConnection.service(HttpConnection.java:789) 
    at org.mortbay.http.HttpConnection.handleNext(HttpConnection.java:960) 
    at org.mortbay.http.SocketChannelListener.handle(SocketChannelListener.java:326) 
    at org.mortbay.util.ThreadPool$PoolThread.run(ThreadPool.java:526) 
</msg> 
</event>

 

Solution

  1. Open your AMS Console
  2. Go to: Configure -> Platform -> Admin Roles
    • or just use this URL: http://<yourAMSserver>:4040/lgserver/admin/configure/tieredadmin/tieredadmin_list.jsp
  3. Edit the LDAP Group Attribute Mapping
  4. Select "none" as the LDAP
  5. Remove the value of the Group Attribute under the LDAP Group Attribute section.
  6. Select OK to save the changes done to LDAP Group Attribute Mapping
  7. Restart your AMS

 

Testing

The error should be gone after AMS restart.

 

Back to the top

Choose files or drag and drop files
Was this article helpful?
Yes
No

  1. Priyanka Bhotika

  2. Posted

Comments