SlideShare una empresa de Scribd logo

SSO 5.1 start-up issues

F
fbuechsel

Troublehshooting Single Sign-On 5.1 start up issues

Software
1 de 31
© 2014 VMware Inc. All rights reserved. Troubleshooting SSO 5.1 Start-Up issues Frank Buechsel
Agenda – SSO architecture – Symptoms of SSO not running or malfunctioning – Suggested troubleshooting procedure – Case studies – Useful command line options
SSO architecture
SSO 5.1 architecture • Status for the actual java wrapper • Does not reflect the status of the 4 sub systems • IMS (https://localhost:7444/ims/STSService?wsdl) • Lookupservice (https://localhost:7444/lookupservice/sdk) • ROOT (vFabric) (https://localhost:7444) • SSO-Adminserver (https://localhost:7444/sso-adminserver/sdk)
Symptoms of SSO not running or malfunctioning
Symptoms of SSO not running or malfunctioning 1/3 • vCenter Server unable to start vpxd.log: 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] STS URI set to: https://vCenter.newhire.local:7444/ims/STSService?wsdl 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Admin URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Groupcheck URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [0] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [1] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error '[SSO][SsoFactory_CreateFacade]'] Unable to create SSO facade: vmodl.fault.SystemError. 2013-05-19T02:45:27.555-07:00 [04628 error 'vpxdvpxdMain'] [Vpxd::ServerApp::Init] Init failed: Vpx::Common::Sso::SsoFactory_CreateFacade(sslContext, ssoFacadeConstPtr) --> Backtrace: […] 2013-05-19T02:45:27.556-07:00 [04628 error 'Default'] Failed to intialize VMware VirtualCenter. Shutting down...
Symptoms of SSO not running or malfunctioning 2/3 • No login possible in the Web Client / vSphere Client
Symptoms of SSO not running or malfunctioning 3/3 • Installation of dependent services failing (Inventory Service, vCenter Server, Web Client)
Suggested troubleshooting procedure
Suggested troubleshooting procedure 1/3 • Check in services.msc if the service is running • Remember that this only referes to the wrapper and tomcat • Check for used ports • Look at the most recent catalina.log • Look at the most recent localhost.log • Look at the imsSystem.log • Look at the config.txt • Look at the database
Suggested troubleshooting procedure 2/3 Java exceptions are hard to read without being filtered for useful information • Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:286) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:993) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:897) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:485) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:456) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:291) at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:626) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:407) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.access$001(SecurityAwareClassPathXmlApplicationContext.java:27) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext$1.run(SecurityAwareClassPathXmlApplicationContext.java:164) at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:82) at com.rsa.security.SecurityContext.doAs(SecurityContext.java:419) at com.rsa.security.SecurityContext.doAsSystem(SecurityContext.java:461) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.refresh(SecurityAwareClassPathXmlApplicationContext.java:161) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:139) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:105) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.<init>(SecurityAwareClassPathXmlApplicationContext.java:90) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source) at java.lang.reflect.Constructor.newInstance(Unknown Source) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:126) ... 29 more Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:141) at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:105) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:278) ... 57 more
Suggested troubleshooting procedure 3/3 • Log bundle analysis the manual way (will always read in the latest log) • $ ls -tr catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc -l Expected output would be “4” • $ ls -tr localhost.* | tail -n 1 | xargs cat | egrep '(Caused)' Expected output would be nothing • $ egrep '(Caused)' imsSystem.log Expected output would be nothing • $ cat config.txt | grep -F db. | tail -n 11 | grep com.rsa (IMS component configuration) • $ cat config.txt | grep -F db. | tail -n 11 | grep " db" (lookupservice db configuration) Expected output would be matching information
Case studies
Case studies – Normal start-up 1/3 No exceptions in catalina.log, localhost.log and imsSystem.log catalina.log
Case studies – Normal start-up 2/3 localhost.log imsSystem.log
Case studies – Normal start-up 3/3 IMS db configuration $ less config.txt | grep -F db. | tail -n 11 | grep " db" [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://; serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 10:14:21,957 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 10:14:21,985 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER Lookupservice db configuration $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 10:14:21,955 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0
Case studies – DB host not reachable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect
Case studies – RSA database offline • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed.
Case studies – Expired RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.
Case studies – Incorrect RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'.
Case studies – Incorrect db information after db move • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Unable to get information from SQL Server: VCENTER2. • $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0 • $ less config.txt | grep -F db. | tail -n 11 | grep " db“ [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://;serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER2
Case studies – DC unavailable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 4 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ • $ egrep '(Caused)' imsSystem.log Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.naming.NamingException: getInitialContext failed. javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 [Root exception is javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268] Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect
Useful command line options
Useful Command Line options 1/8 • Autodiscovery after installation is finished • ssocli configure-riat -a discover-is -u admin --verbose
Useful Command Line options 2/8 • List identity sources (useful as this information is not collected in an SSO log bundle) • ssocli manage-identity-sources -a list -u admin
Useful Command Line options 3/8 • Delete an identity source • ssocli manage-identity-sources -a delete -u admin -g <ims.id>
Useful Command Line options 4/8 • Create an identity source • ssocli manage-identity-sources -a create -u admin
Useful Command Line options 5/8 • Change the password for SSO admins and the SSO master password • ssocli reset-admin-password • ssocli manage-secrets -a change
Useful Command Line options 6/8 • Unlock the system after too many system changes • ssocli manage-secrets -a recover
Useful Command Line options 7/8 • Testing database connectivity without SQL Management Studio • sqlcmd -S hostnameinstance -U RSA_USER -d RSA
Useful Command Line options 8/8 • Silent uninstall of SSO • msiexec /qn /x {DEC4C346-414B-4814-9BF3-CAC14154B55A} MASTER_PASSWORD <master password>

Recomendados

vCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divevCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divefbuechsel
 
SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5fbuechsel
 
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld
 
VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld
 
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld
 
vCenter and ESXi network port communications
vCenter and ESXi network port communicationsvCenter and ESXi network port communications
vCenter and ESXi network port communicationsAnimesh Dixit
 
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld
 
Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Dimitris Andreadis
 

Recomendados

vCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divevCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divefbuechsel
 
SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5fbuechsel
 
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld
 
VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld
 
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld
 
vCenter and ESXi network port communications
vCenter and ESXi network port communicationsvCenter and ESXi network port communications
vCenter and ESXi network port communicationsAnimesh Dixit
 
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld
 
Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Dimitris Andreadis
 
Introduction to vSphere logs
Introduction to vSphere logsIntroduction to vSphere logs
Introduction to vSphere logsKaushik Chakraborty
 
WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outlineVybhava Technologies
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningMichel Schildmeijer
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationSimon Haslam
 
WebLogic for DBAs
WebLogic for DBAsWebLogic for DBAs
WebLogic for DBAsSimon Haslam
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.Dimitris Andreadis
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote VMUG IT
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Adam Eckerle
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingAlexandre Cavalcanti
 
Devoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDevoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDimitris Andreadis
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsPositive Hack Days
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014Dimitris Andreadis
 
WebLogic FAQs
WebLogic FAQsWebLogic FAQs
WebLogic FAQsAmit Sharma
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionDimitris Andreadis
 
J boss
J bossJ boss
J bossjrfx448
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the UnionDimitris Andreadis
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyRakesh Gujjarlapudi
 
RHT Design for Security
RHT Design for SecurityRHT Design for Security
RHT Design for Securityvirtualsouthwest
 
WildFly & WildFly Swarm
WildFly & WildFly SwarmWildFly & WildFly Swarm
WildFly & WildFly SwarmDimitris Andreadis
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic consolebispsolutions
 
WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesChris Bailey
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...London Microservices
 

Más contenido relacionado

La actualidad más candente

WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outlineVybhava Technologies
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningMichel Schildmeijer
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationSimon Haslam
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.Dimitris Andreadis
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote VMUG IT
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Adam Eckerle
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingAlexandre Cavalcanti
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsPositive Hack Days
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014Dimitris Andreadis
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionDimitris Andreadis
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the UnionDimitris Andreadis
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic consolebispsolutions
 

La actualidad más candente (20)

Introduction to vSphere logs
Introduction to vSphere logsIntroduction to vSphere logs
Introduction to vSphere logs
 
WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outline
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuning
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL Configuration
 
WebLogic for DBAs
WebLogic for DBAsWebLogic for DBAs
WebLogic for DBAs
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 Troubleshooting
 
Devoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDevoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOF
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 seconds
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014
 
WebLogic FAQs
WebLogic FAQsWebLogic FAQs
WebLogic FAQs
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the Union
 
J boss
J bossJ boss
J boss
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the Union
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
 
RHT Design for Security
RHT Design for SecurityRHT Design for Security
RHT Design for Security
 
WildFly & WildFly Swarm
WildFly & WildFly SwarmWildFly & WildFly Swarm
WildFly & WildFly Swarm
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic console
 

Similar a SSO 5.1 start-up issues

WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesChris Bailey
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...London Microservices
 
Building WebLogic Domains With WLST
Building WebLogic Domains With WLSTBuilding WebLogic Domains With WLST
Building WebLogic Domains With WLSTC2B2 Consulting
 
Python Deployment with Fabric
Python Deployment with FabricPython Deployment with Fabric
Python Deployment with Fabricandymccurdy
 
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltStack
 
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...Timofey Turenko
 
Head First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & ApplicationHead First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & ApplicationJace Ju
 
MySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELKMySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELKYoungHeon (Roy) Kim
 
A 2-2 php on windows azure
A 2-2 php on windows azureA 2-2 php on windows azure
A 2-2 php on windows azureGoAzure
 
Blue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on AzureBlue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on AzureRob Habraken
 
Deployment with Fabric
Deployment with FabricDeployment with Fabric
Deployment with Fabricandymccurdy
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup PerformanceGreg Whalin
 
Deployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server requiredDeployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server requiredSarwar Javaid
 
Cloud computing 3702
Cloud computing 3702Cloud computing 3702
Cloud computing 3702Jess Coburn
 
Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...Maarten Balliauw
 
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptxPowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptxprabhatthunuguntla
 
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get DiagnosticsBoris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get DiagnosticsShapeBlue
 

Similar a SSO 5.1 start-up issues (20)

WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination Features
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
 
Building WebLogic Domains With WLST
Building WebLogic Domains With WLSTBuilding WebLogic Domains With WLST
Building WebLogic Domains With WLST
 
Python Deployment with Fabric
Python Deployment with FabricPython Deployment with Fabric
Python Deployment with Fabric
 
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
 
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
 
Head First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & ApplicationHead First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & Application
 
MySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELKMySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELK
 
PHP on Windows Azure
PHP on Windows Azure PHP on Windows Azure
PHP on Windows Azure
 
A 2-2 php on windows azure
A 2-2 php on windows azureA 2-2 php on windows azure
A 2-2 php on windows azure
 
Blue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on AzureBlue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on Azure
 
Deployment with Fabric
Deployment with FabricDeployment with Fabric
Deployment with Fabric
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
 
Deployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server requiredDeployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server required
 
SharePoint Topology
SharePoint Topology SharePoint Topology
SharePoint Topology
 
Cloud computing 3702
Cloud computing 3702Cloud computing 3702
Cloud computing 3702
 
Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...
 
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptxPowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
 
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get DiagnosticsBoris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
 

Último

CRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceCRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceBrainSell Technologies
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprisepreethippts
 
SensoDat: Simulation-based Sensor Dataset of Self-driving Cars
SensoDat: Simulation-based Sensor Dataset of Self-driving CarsSensoDat: Simulation-based Sensor Dataset of Self-driving Cars
SensoDat: Simulation-based Sensor Dataset of Self-driving CarsChristian Birchler
 
What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...Technogeeks
 
Folding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesFolding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesPhilip Schwarz
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfMarharyta Nedzelska
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Developmentvyaparkranti
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...confluent
 
Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Andreas Granig
 
Implementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureImplementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureDinusha Kumarasiri
 
Cyber security and its impact on E commerce
Cyber security and its impact on E commerceCyber security and its impact on E commerce
Cyber security and its impact on E commercemanigoyal112
 
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdf
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdfInnovate and Collaborate- Harnessing the Power of Open Source Software.pdf
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdfYashikaSharma391629
 
Intelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmIntelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmSujith Sukumaran
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationBradBedford3
 
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...Akihiro Suda
 
Unveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsUnveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsAhmed Mohamed
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationvaddepallysandeep122
 
Unveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesUnveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesŁukasz Chruściel
 
Salesforce Implementation Services PPT By ABSYZ
Salesforce Implementation Services PPT By ABSYZSalesforce Implementation Services PPT By ABSYZ
Salesforce Implementation Services PPT By ABSYZABSYZ Inc
 

Último (20)

CRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. SalesforceCRM Contender Series: HubSpot vs. Salesforce
CRM Contender Series: HubSpot vs. Salesforce
 
Odoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 EnterpriseOdoo 14 - eLearning Module In Odoo 14 Enterprise
Odoo 14 - eLearning Module In Odoo 14 Enterprise
 
SensoDat: Simulation-based Sensor Dataset of Self-driving Cars
SensoDat: Simulation-based Sensor Dataset of Self-driving CarsSensoDat: Simulation-based Sensor Dataset of Self-driving Cars
SensoDat: Simulation-based Sensor Dataset of Self-driving Cars
 
What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...What is Advanced Excel and what are some best practices for designing and cre...
What is Advanced Excel and what are some best practices for designing and cre...
 
Folding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a seriesFolding Cheat Sheet #4 - fourth in a series
Folding Cheat Sheet #4 - fourth in a series
 
A healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdfA healthy diet for your Java application Devoxx France.pdf
A healthy diet for your Java application Devoxx France.pdf
 
VK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web DevelopmentVK Business Profile - provides IT solutions and Web Development
VK Business Profile - provides IT solutions and Web Development
 
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
Catch the Wave: SAP Event-Driven and Data Streaming for the Intelligence Ente...
 
Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024Automate your Kamailio Test Calls - Kamailio World 2024
Automate your Kamailio Test Calls - Kamailio World 2024
 
Implementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with AzureImplementing Zero Trust strategy with Azure
Implementing Zero Trust strategy with Azure
 
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort ServiceHot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
Hot Sexy call girls in Patel Nagar🔝 9953056974 🔝 escort Service
 
Cyber security and its impact on E commerce
Cyber security and its impact on E commerceCyber security and its impact on E commerce
Cyber security and its impact on E commerce
 
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdf
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdfInnovate and Collaborate- Harnessing the Power of Open Source Software.pdf
Innovate and Collaborate- Harnessing the Power of Open Source Software.pdf
 
Intelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalmIntelligent Home Wi-Fi Solutions | ThinkPalm
Intelligent Home Wi-Fi Solutions | ThinkPalm
 
How to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion ApplicationHow to submit a standout Adobe Champion Application
How to submit a standout Adobe Champion Application
 
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...
20240415 [Container Plumbing Days] Usernetes Gen2 - Kubernetes in Rootless Do...
 
Unveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML DiagramsUnveiling Design Patterns: A Visual Guide with UML Diagrams
Unveiling Design Patterns: A Visual Guide with UML Diagrams
 
PREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentationPREDICTING RIVER WATER QUALITY ppt presentation
PREDICTING RIVER WATER QUALITY ppt presentation
 
Unveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New FeaturesUnveiling the Future: Sylius 2.0 New Features
Unveiling the Future: Sylius 2.0 New Features
 
Salesforce Implementation Services PPT By ABSYZ
Salesforce Implementation Services PPT By ABSYZSalesforce Implementation Services PPT By ABSYZ
Salesforce Implementation Services PPT By ABSYZ
 

SSO 5.1 start-up issues

  • 1. © 2014 VMware Inc. All rights reserved. Troubleshooting SSO 5.1 Start-Up issues Frank Buechsel
  • 2. Agenda – SSO architecture – Symptoms of SSO not running or malfunctioning – Suggested troubleshooting procedure – Case studies – Useful command line options
  • 4. SSO 5.1 architecture • Status for the actual java wrapper • Does not reflect the status of the 4 sub systems • IMS (https://localhost:7444/ims/STSService?wsdl) • Lookupservice (https://localhost:7444/lookupservice/sdk) • ROOT (vFabric) (https://localhost:7444) • SSO-Adminserver (https://localhost:7444/sso-adminserver/sdk)
  • 5. Symptoms of SSO not running or malfunctioning
  • 6. Symptoms of SSO not running or malfunctioning 1/3 • vCenter Server unable to start vpxd.log: 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] STS URI set to: https://vCenter.newhire.local:7444/ims/STSService?wsdl 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Admin URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Groupcheck URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [0] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [1] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error '[SSO][SsoFactory_CreateFacade]'] Unable to create SSO facade: vmodl.fault.SystemError. 2013-05-19T02:45:27.555-07:00 [04628 error 'vpxdvpxdMain'] [Vpxd::ServerApp::Init] Init failed: Vpx::Common::Sso::SsoFactory_CreateFacade(sslContext, ssoFacadeConstPtr) --> Backtrace: […] 2013-05-19T02:45:27.556-07:00 [04628 error 'Default'] Failed to intialize VMware VirtualCenter. Shutting down...
  • 7. Symptoms of SSO not running or malfunctioning 2/3 • No login possible in the Web Client / vSphere Client
  • 8. Symptoms of SSO not running or malfunctioning 3/3 • Installation of dependent services failing (Inventory Service, vCenter Server, Web Client)
  • 10. Suggested troubleshooting procedure 1/3 • Check in services.msc if the service is running • Remember that this only referes to the wrapper and tomcat • Check for used ports • Look at the most recent catalina.log • Look at the most recent localhost.log • Look at the imsSystem.log • Look at the config.txt • Look at the database
  • 11. Suggested troubleshooting procedure 2/3 Java exceptions are hard to read without being filtered for useful information • Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:286) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:993) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:897) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:485) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:456) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:291) at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:626) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:407) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.access$001(SecurityAwareClassPathXmlApplicationContext.java:27) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext$1.run(SecurityAwareClassPathXmlApplicationContext.java:164) at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:82) at com.rsa.security.SecurityContext.doAs(SecurityContext.java:419) at com.rsa.security.SecurityContext.doAsSystem(SecurityContext.java:461) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.refresh(SecurityAwareClassPathXmlApplicationContext.java:161) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:139) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:105) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.<init>(SecurityAwareClassPathXmlApplicationContext.java:90) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source) at java.lang.reflect.Constructor.newInstance(Unknown Source) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:126) ... 29 more Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:141) at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:105) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:278) ... 57 more
  • 12. Suggested troubleshooting procedure 3/3 • Log bundle analysis the manual way (will always read in the latest log) • $ ls -tr catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc -l Expected output would be “4” • $ ls -tr localhost.* | tail -n 1 | xargs cat | egrep '(Caused)' Expected output would be nothing • $ egrep '(Caused)' imsSystem.log Expected output would be nothing • $ cat config.txt | grep -F db. | tail -n 11 | grep com.rsa (IMS component configuration) • $ cat config.txt | grep -F db. | tail -n 11 | grep " db" (lookupservice db configuration) Expected output would be matching information
  • 14. Case studies – Normal start-up 1/3 No exceptions in catalina.log, localhost.log and imsSystem.log catalina.log
  • 15. Case studies – Normal start-up 2/3 localhost.log imsSystem.log
  • 16. Case studies – Normal start-up 3/3 IMS db configuration $ less config.txt | grep -F db. | tail -n 11 | grep " db" [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://; serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 10:14:21,957 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 10:14:21,985 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER Lookupservice db configuration $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 10:14:21,955 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0
  • 17. Case studies – DB host not reachable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect
  • 18. Case studies – RSA database offline • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed.
  • 19. Case studies – Expired RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.
  • 20. Case studies – Incorrect RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'.
  • 21. Case studies – Incorrect db information after db move • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Unable to get information from SQL Server: VCENTER2. • $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0 • $ less config.txt | grep -F db. | tail -n 11 | grep " db“ [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://;serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER2
  • 22. Case studies – DC unavailable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 4 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ • $ egrep '(Caused)' imsSystem.log Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.naming.NamingException: getInitialContext failed. javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 [Root exception is javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268] Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect
  • 24. Useful Command Line options 1/8 • Autodiscovery after installation is finished • ssocli configure-riat -a discover-is -u admin --verbose
  • 25. Useful Command Line options 2/8 • List identity sources (useful as this information is not collected in an SSO log bundle) • ssocli manage-identity-sources -a list -u admin
  • 26. Useful Command Line options 3/8 • Delete an identity source • ssocli manage-identity-sources -a delete -u admin -g <ims.id>
  • 27. Useful Command Line options 4/8 • Create an identity source • ssocli manage-identity-sources -a create -u admin
  • 28. Useful Command Line options 5/8 • Change the password for SSO admins and the SSO master password • ssocli reset-admin-password • ssocli manage-secrets -a change
  • 29. Useful Command Line options 6/8 • Unlock the system after too many system changes • ssocli manage-secrets -a recover
  • 30. Useful Command Line options 7/8 • Testing database connectivity without SQL Management Studio • sqlcmd -S hostnameinstance -U RSA_USER -d RSA
  • 31. Useful Command Line options 8/8 • Silent uninstall of SSO • msiexec /qn /x {DEC4C346-414B-4814-9BF3-CAC14154B55A} MASTER_PASSWORD <master password>

Notas del editor

  1. IMS and Lookupservice are dependent on database connection to be able to start.
  2. It is not possible to edit an identity source using the command line