SlideShare a Scribd company logo

SSO 5.1 start-up issues

F
fbuechsel

The document discusses troubleshooting SSO startup issues. It provides information on SSO architecture, common symptoms of failures like vCenter Server being unable to start or login issues, and a suggested troubleshooting procedure. This includes checking logs, services, ports, and database configuration. Case studies demonstrate normal startup logs and an example where the database host is not reachable.

1 of 31
© 2014 VMware Inc. All rights reserved. Troubleshooting SSO 5.1 Start-Up issues Frank Buechsel
Agenda – SSO architecture – Symptoms of SSO not running or malfunctioning – Suggested troubleshooting procedure – Case studies – Useful command line options
SSO architecture
SSO 5.1 architecture • Status for the actual java wrapper • Does not reflect the status of the 4 sub systems • IMS (https://localhost:7444/ims/STSService?wsdl) • Lookupservice (https://localhost:7444/lookupservice/sdk) • ROOT (vFabric) (https://localhost:7444) • SSO-Adminserver (https://localhost:7444/sso-adminserver/sdk)
Symptoms of SSO not running or malfunctioning
Symptoms of SSO not running or malfunctioning 1/3 • vCenter Server unable to start vpxd.log: 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] STS URI set to: https://vCenter.newhire.local:7444/ims/STSService?wsdl 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Admin URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Groupcheck URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [0] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [1] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error '[SSO][SsoFactory_CreateFacade]'] Unable to create SSO facade: vmodl.fault.SystemError. 2013-05-19T02:45:27.555-07:00 [04628 error 'vpxdvpxdMain'] [Vpxd::ServerApp::Init] Init failed: Vpx::Common::Sso::SsoFactory_CreateFacade(sslContext, ssoFacadeConstPtr) --> Backtrace: […] 2013-05-19T02:45:27.556-07:00 [04628 error 'Default'] Failed to intialize VMware VirtualCenter. Shutting down...
Symptoms of SSO not running or malfunctioning 2/3 • No login possible in the Web Client / vSphere Client
Symptoms of SSO not running or malfunctioning 3/3 • Installation of dependent services failing (Inventory Service, vCenter Server, Web Client)
Suggested troubleshooting procedure
Suggested troubleshooting procedure 1/3 • Check in services.msc if the service is running • Remember that this only referes to the wrapper and tomcat • Check for used ports • Look at the most recent catalina.log • Look at the most recent localhost.log • Look at the imsSystem.log • Look at the config.txt • Look at the database
Suggested troubleshooting procedure 2/3 Java exceptions are hard to read without being filtered for useful information • Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:286) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:993) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:897) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:485) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:456) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:291) at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:626) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:407) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.access$001(SecurityAwareClassPathXmlApplicationContext.java:27) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext$1.run(SecurityAwareClassPathXmlApplicationContext.java:164) at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:82) at com.rsa.security.SecurityContext.doAs(SecurityContext.java:419) at com.rsa.security.SecurityContext.doAsSystem(SecurityContext.java:461) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.refresh(SecurityAwareClassPathXmlApplicationContext.java:161) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:139) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:105) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.<init>(SecurityAwareClassPathXmlApplicationContext.java:90) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source) at java.lang.reflect.Constructor.newInstance(Unknown Source) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:126) ... 29 more Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:141) at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:105) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:278) ... 57 more
Suggested troubleshooting procedure 3/3 • Log bundle analysis the manual way (will always read in the latest log) • $ ls -tr catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc -l Expected output would be “4” • $ ls -tr localhost.* | tail -n 1 | xargs cat | egrep '(Caused)' Expected output would be nothing • $ egrep '(Caused)' imsSystem.log Expected output would be nothing • $ cat config.txt | grep -F db. | tail -n 11 | grep com.rsa (IMS component configuration) • $ cat config.txt | grep -F db. | tail -n 11 | grep " db" (lookupservice db configuration) Expected output would be matching information
Case studies
Case studies – Normal start-up 1/3 No exceptions in catalina.log, localhost.log and imsSystem.log catalina.log
Case studies – Normal start-up 2/3 localhost.log imsSystem.log
Case studies – Normal start-up 3/3 IMS db configuration $ less config.txt | grep -F db. | tail -n 11 | grep " db" [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://; serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 10:14:21,957 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 10:14:21,985 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER Lookupservice db configuration $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 10:14:21,955 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0
Case studies – DB host not reachable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect
Case studies – RSA database offline • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed.
Case studies – Expired RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.
Case studies – Incorrect RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'.
Case studies – Incorrect db information after db move • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Unable to get information from SQL Server: VCENTER2. • $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0 • $ less config.txt | grep -F db. | tail -n 11 | grep " db“ [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://;serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER2
Case studies – DC unavailable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 4 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ • $ egrep '(Caused)' imsSystem.log Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.naming.NamingException: getInitialContext failed. javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 [Root exception is javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268] Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect
Useful command line options
Useful Command Line options 1/8 • Autodiscovery after installation is finished • ssocli configure-riat -a discover-is -u admin --verbose
Useful Command Line options 2/8 • List identity sources (useful as this information is not collected in an SSO log bundle) • ssocli manage-identity-sources -a list -u admin
Useful Command Line options 3/8 • Delete an identity source • ssocli manage-identity-sources -a delete -u admin -g <ims.id>
Useful Command Line options 4/8 • Create an identity source • ssocli manage-identity-sources -a create -u admin
Useful Command Line options 5/8 • Change the password for SSO admins and the SSO master password • ssocli reset-admin-password • ssocli manage-secrets -a change
Useful Command Line options 6/8 • Unlock the system after too many system changes • ssocli manage-secrets -a recover
Useful Command Line options 7/8 • Testing database connectivity without SQL Management Studio • sqlcmd -S hostnameinstance -U RSA_USER -d RSA
Useful Command Line options 8/8 • Silent uninstall of SSO • msiexec /qn /x {DEC4C346-414B-4814-9BF3-CAC14154B55A} MASTER_PASSWORD <master password>

Recommended

vCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divevCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep dive
fbuechsel
 
SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5
fbuechsel
 
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld
 
VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive
VMworld
 
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld
 
vCenter and ESXi network port communications
vCenter and ESXi network port communicationsvCenter and ESXi network port communications
vCenter and ESXi network port communications
Animesh Dixit
 
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld
 
Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8
Dimitris Andreadis
 

Recommended

vCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep divevCenter Server 5.5 Single Sign-On VMDir deep dive
vCenter Server 5.5 Single Sign-On VMDir deep dive
fbuechsel
 
SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5SSL deep dive vCenter Server 5.5
SSL deep dive vCenter Server 5.5
fbuechsel
 
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld 2013: vSphere vCenter Single Sign-on Best Practices
VMworld
 
VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive VMworld 2013: vCenter Deep Dive
VMworld 2013: vCenter Deep Dive
VMworld
 
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep DiveVMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld 2014: vCenter Server Architecture and Deployment Deep Dive
VMworld
 
vCenter and ESXi network port communications
vCenter and ESXi network port communicationsvCenter and ESXi network port communications
vCenter and ESXi network port communications
Animesh Dixit
 
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter ServerVMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld 2013: vSphere Upgrade Series Part 1: vCenter Server
VMworld
 
Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8Introduction to Role Based Administration in WildFly 8
Introduction to Role Based Administration in WildFly 8
Dimitris Andreadis
 
Introduction to vSphere logs
Introduction to vSphere logsIntroduction to vSphere logs
Introduction to vSphere logs
Kaushik Chakraborty
 
WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outline
Vybhava Technologies
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuning
Michel Schildmeijer
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL Configuration
Simon Haslam
 
WebLogic for DBAs
WebLogic for DBAsWebLogic for DBAs
WebLogic for DBAs
Simon Haslam
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
Dimitris Andreadis
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote
VMUG IT
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6
Adam Eckerle
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 Troubleshooting
Alexandre Cavalcanti
 
Devoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDevoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOF
Dimitris Andreadis
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 seconds
Positive Hack Days
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014
Dimitris Andreadis
 
WebLogic FAQs
WebLogic FAQsWebLogic FAQs
WebLogic FAQs
Amit Sharma
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the Union
Dimitris Andreadis
 
J boss
J bossJ boss
J boss
jrfx448
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the Union
Dimitris Andreadis
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
Rakesh Gujjarlapudi
 
RHT Design for Security
RHT Design for SecurityRHT Design for Security
RHT Design for Security
virtualsouthwest
 
WildFly & WildFly Swarm
WildFly & WildFly SwarmWildFly & WildFly Swarm
WildFly & WildFly Swarm
Dimitris Andreadis
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic console
bispsolutions
 
WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination Features
Chris Bailey
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
London Microservices
 

More Related Content

What's hot

Introduction to vSphere logs
Introduction to vSphere logsIntroduction to vSphere logs
Introduction to vSphere logs
Kaushik Chakraborty
 
WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outline
Vybhava Technologies
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuning
Michel Schildmeijer
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL Configuration
Simon Haslam
 
WebLogic for DBAs
WebLogic for DBAsWebLogic for DBAs
WebLogic for DBAs
Simon Haslam
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
Dimitris Andreadis
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote
VMUG IT
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6
Adam Eckerle
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 Troubleshooting
Alexandre Cavalcanti
 
Devoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDevoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOF
Dimitris Andreadis
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 seconds
Positive Hack Days
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014
Dimitris Andreadis
 
WebLogic FAQs
WebLogic FAQsWebLogic FAQs
WebLogic FAQs
Amit Sharma
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the Union
Dimitris Andreadis
 
J boss
J bossJ boss
J boss
jrfx448
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the Union
Dimitris Andreadis
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
Rakesh Gujjarlapudi
 
RHT Design for Security
RHT Design for SecurityRHT Design for Security
RHT Design for Security
virtualsouthwest
 
WildFly & WildFly Swarm
WildFly & WildFly SwarmWildFly & WildFly Swarm
WildFly & WildFly Swarm
Dimitris Andreadis
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic console
bispsolutions
 

What's hot (20)

Introduction to vSphere logs
Introduction to vSphere logsIntroduction to vSphere logs
Introduction to vSphere logs
 
WebLogic Administration course outline
WebLogic Administration course outlineWebLogic Administration course outline
WebLogic Administration course outline
 
Oracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuningOracle WebLogic Diagnostics & Perfomance tuning
Oracle WebLogic Diagnostics & Perfomance tuning
 
WebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL ConfigurationWebLogic in Practice: SSL Configuration
WebLogic in Practice: SSL Configuration
 
WebLogic for DBAs
WebLogic for DBAsWebLogic for DBAs
WebLogic for DBAs
 
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
WildFly v9 - State of the Union Session at Voxxed, Istanbul, May/9th 2015.
 
Emad Younis - Keynote
Emad Younis - Keynote Emad Younis - Keynote
Emad Younis - Keynote
 
Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6Nashville VMUG Keynote April 8 2015 - vSphere 6
Nashville VMUG Keynote April 8 2015 - vSphere 6
 
JBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 TroubleshootingJBoss Enterprise Application Platform 6 Troubleshooting
JBoss Enterprise Application Platform 6 Troubleshooting
 
Devoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOFDevoxx 2013, WildFly BOF
Devoxx 2013, WildFly BOF
 
How to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 secondsHow to hack VMware vCenter server in 60 seconds
How to hack VMware vCenter server in 60 seconds
 
WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014WildFly BOF and V9 update @ Devoxx 2014
WildFly BOF and V9 update @ Devoxx 2014
 
WebLogic FAQs
WebLogic FAQsWebLogic FAQs
WebLogic FAQs
 
JBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the UnionJBoss EAP / WildFly, State of the Union
JBoss EAP / WildFly, State of the Union
 
J boss
J bossJ boss
J boss
 
WildFly AppServer - State of the Union
WildFly AppServer - State of the UnionWildFly AppServer - State of the Union
WildFly AppServer - State of the Union
 
Oracle WebLogic 11g Topology
Oracle WebLogic 11g TopologyOracle WebLogic 11g Topology
Oracle WebLogic 11g Topology
 
RHT Design for Security
RHT Design for SecurityRHT Design for Security
RHT Design for Security
 
WildFly & WildFly Swarm
WildFly & WildFly SwarmWildFly & WildFly Swarm
WildFly & WildFly Swarm
 
An introduction to weblogic console
An introduction to weblogic consoleAn introduction to weblogic console
An introduction to weblogic console
 

Similar to SSO 5.1 start-up issues

WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination Features
Chris Bailey
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
London Microservices
 
Building WebLogic Domains With WLST
Building WebLogic Domains With WLSTBuilding WebLogic Domains With WLST
Building WebLogic Domains With WLST
C2B2 Consulting
 
Python Deployment with Fabric
Python Deployment with FabricPython Deployment with Fabric
Python Deployment with Fabric
andymccurdy
 
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltStack
 
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
Timofey Turenko
 
Head First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & ApplicationHead First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & Application
Jace Ju
 
MySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELKMySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELK
YoungHeon (Roy) Kim
 
PHP on Windows Azure
PHP on Windows Azure PHP on Windows Azure
PHP on Windows Azure
Microsoft Openness Japan
 
A 2-2 php on windows azure
A 2-2 php on windows azureA 2-2 php on windows azure
A 2-2 php on windows azure
GoAzure
 
Blue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on AzureBlue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on Azure
Rob Habraken
 
Deployment with Fabric
Deployment with FabricDeployment with Fabric
Deployment with Fabric
andymccurdy
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
Greg Whalin
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
Justin Cataldo
 
Deployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server requiredDeployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server required
Sarwar Javaid
 
SharePoint Topology
SharePoint Topology SharePoint Topology
SharePoint Topology
Information Technology
 
Cloud computing 3702
Cloud computing 3702Cloud computing 3702
Cloud computing 3702
Jess Coburn
 
Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...
Maarten Balliauw
 
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptxPowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
prabhatthunuguntla
 
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get DiagnosticsBoris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
ShapeBlue
 

Similar to SSO 5.1 start-up issues (20)

WebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination FeaturesWebSphere Technical University: Top WebSphere Problem Determination Features
WebSphere Technical University: Top WebSphere Problem Determination Features
 
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
Lean microservices through ahead of time compilation (Tobias Piper, Loveholid...
 
Building WebLogic Domains With WLST
Building WebLogic Domains With WLSTBuilding WebLogic Domains With WLST
Building WebLogic Domains With WLST
 
Python Deployment with Fabric
Python Deployment with FabricPython Deployment with Fabric
Python Deployment with Fabric
 
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability EnvironmentsSaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
SaltConf14 - Ben Cane - Using SaltStack in High Availability Environments
 
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
DB proxy server test: run tests on tens of virtual machines with Jenkins, Vag...
 
Head First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & ApplicationHead First Zend Framework - Part 1 Project & Application
Head First Zend Framework - Part 1 Project & Application
 
MySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELKMySQL Audit using Percona audit plugin and ELK
MySQL Audit using Percona audit plugin and ELK
 
PHP on Windows Azure
PHP on Windows Azure PHP on Windows Azure
PHP on Windows Azure
 
A 2-2 php on windows azure
A 2-2 php on windows azureA 2-2 php on windows azure
A 2-2 php on windows azure
 
Blue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on AzureBlue Green Sitecore Deployments on Azure
Blue Green Sitecore Deployments on Azure
 
Deployment with Fabric
Deployment with FabricDeployment with Fabric
Deployment with Fabric
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
 
Meetup Performance
Meetup PerformanceMeetup Performance
Meetup Performance
 
Deployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server requiredDeployment ibm connections - No Http Server required
Deployment ibm connections - No Http Server required
 
SharePoint Topology
SharePoint Topology SharePoint Topology
SharePoint Topology
 
Cloud computing 3702
Cloud computing 3702Cloud computing 3702
Cloud computing 3702
 
Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...Sherlock Homepage - A detective story about running large web services - WebN...
Sherlock Homepage - A detective story about running large web services - WebN...
 
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptxPowerShell-and-DSC-Enables-DSCDevOps-1.pptx
PowerShell-and-DSC-Enables-DSCDevOps-1.pptx
 
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get DiagnosticsBoris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
Boris Stoyanov - Troubleshooting the Virtual Router - Run and Get Diagnostics
 

Recently uploaded

Unveiling the Advantages of Agile Software Development.pdf
Unveiling the Advantages of Agile Software Development.pdfUnveiling the Advantages of Agile Software Development.pdf
Unveiling the Advantages of Agile Software Development.pdf
brainerhub1
 
SMS API Integration in Saudi Arabia| Best SMS API Service
SMS API Integration in Saudi Arabia| Best SMS API ServiceSMS API Integration in Saudi Arabia| Best SMS API Service
SMS API Integration in Saudi Arabia| Best SMS API Service
Yara Milbes
 
Energy consumption of Database Management - Florina Jonuzi
Energy consumption of Database Management - Florina JonuziEnergy consumption of Database Management - Florina Jonuzi
Energy consumption of Database Management - Florina Jonuzi
Green Software Development
 
WWDC 2024 Keynote Review: For CocoaCoders Austin
WWDC 2024 Keynote Review: For CocoaCoders AustinWWDC 2024 Keynote Review: For CocoaCoders Austin
WWDC 2024 Keynote Review: For CocoaCoders Austin
Patrick Weigel
 
Top 9 Trends in Cybersecurity for 2024.pptx
Top 9 Trends in Cybersecurity for 2024.pptxTop 9 Trends in Cybersecurity for 2024.pptx
Top 9 Trends in Cybersecurity for 2024.pptx
devvsandy
 
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
Łukasz Chruściel
 
E-commerce Development Services- Hornet Dynamics
E-commerce Development Services- Hornet DynamicsE-commerce Development Services- Hornet Dynamics
E-commerce Development Services- Hornet Dynamics
Hornet Dynamics
 
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
ssuserad3af4
 
Fundamentals of Programming and Language Processors
Fundamentals of Programming and Language ProcessorsFundamentals of Programming and Language Processors
Fundamentals of Programming and Language Processors
Rakesh Kumar R
 
Webinar On-Demand: Using Flutter for Embedded
Webinar On-Demand: Using Flutter for EmbeddedWebinar On-Demand: Using Flutter for Embedded
Webinar On-Demand: Using Flutter for Embedded
ICS
 
GreenCode-A-VSCode-Plugin--Dario-Jurisic
GreenCode-A-VSCode-Plugin--Dario-JurisicGreenCode-A-VSCode-Plugin--Dario-Jurisic
GreenCode-A-VSCode-Plugin--Dario-Jurisic
Green Software Development
 
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
dakas1
 
Requirement Traceability in Xen Functional Safety
Requirement Traceability in Xen Functional SafetyRequirement Traceability in Xen Functional Safety
Requirement Traceability in Xen Functional Safety
Ayan Halder
 
Microservice Teams - How the cloud changes the way we work
Microservice Teams - How the cloud changes the way we workMicroservice Teams - How the cloud changes the way we work
Microservice Teams - How the cloud changes the way we work
Sven Peters
 
UI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
UI5con 2024 - Boost Your Development Experience with UI5 Tooling ExtensionsUI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
UI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
Peter Muessig
 
Measures in SQL (SIGMOD 2024, Santiago, Chile)
Measures in SQL (SIGMOD 2024, Santiago, Chile)Measures in SQL (SIGMOD 2024, Santiago, Chile)
Measures in SQL (SIGMOD 2024, Santiago, Chile)
Julian Hyde
 
All you need to know about Spring Boot and GraalVM
All you need to know about Spring Boot and GraalVMAll you need to know about Spring Boot and GraalVM
All you need to know about Spring Boot and GraalVM
Alina Yurenko
 
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian CompaniesE-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
Quickdice ERP
 
socradar-q1-2024-aviation-industry-report.pdf
socradar-q1-2024-aviation-industry-report.pdfsocradar-q1-2024-aviation-industry-report.pdf
socradar-q1-2024-aviation-industry-report.pdf
SOCRadar
 
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
mz5nrf0n
 

Recently uploaded (20)

Unveiling the Advantages of Agile Software Development.pdf
Unveiling the Advantages of Agile Software Development.pdfUnveiling the Advantages of Agile Software Development.pdf
Unveiling the Advantages of Agile Software Development.pdf
 
SMS API Integration in Saudi Arabia| Best SMS API Service
SMS API Integration in Saudi Arabia| Best SMS API ServiceSMS API Integration in Saudi Arabia| Best SMS API Service
SMS API Integration in Saudi Arabia| Best SMS API Service
 
Energy consumption of Database Management - Florina Jonuzi
Energy consumption of Database Management - Florina JonuziEnergy consumption of Database Management - Florina Jonuzi
Energy consumption of Database Management - Florina Jonuzi
 
WWDC 2024 Keynote Review: For CocoaCoders Austin
WWDC 2024 Keynote Review: For CocoaCoders AustinWWDC 2024 Keynote Review: For CocoaCoders Austin
WWDC 2024 Keynote Review: For CocoaCoders Austin
 
Top 9 Trends in Cybersecurity for 2024.pptx
Top 9 Trends in Cybersecurity for 2024.pptxTop 9 Trends in Cybersecurity for 2024.pptx
Top 9 Trends in Cybersecurity for 2024.pptx
 
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf2024 eCommerceDays Toulouse - Sylius 2.0.pdf
2024 eCommerceDays Toulouse - Sylius 2.0.pdf
 
E-commerce Development Services- Hornet Dynamics
E-commerce Development Services- Hornet DynamicsE-commerce Development Services- Hornet Dynamics
E-commerce Development Services- Hornet Dynamics
 
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
316895207-SAP-Oil-and-Gas-Downstream-Training.pptx
 
Fundamentals of Programming and Language Processors
Fundamentals of Programming and Language ProcessorsFundamentals of Programming and Language Processors
Fundamentals of Programming and Language Processors
 
Webinar On-Demand: Using Flutter for Embedded
Webinar On-Demand: Using Flutter for EmbeddedWebinar On-Demand: Using Flutter for Embedded
Webinar On-Demand: Using Flutter for Embedded
 
GreenCode-A-VSCode-Plugin--Dario-Jurisic
GreenCode-A-VSCode-Plugin--Dario-JurisicGreenCode-A-VSCode-Plugin--Dario-Jurisic
GreenCode-A-VSCode-Plugin--Dario-Jurisic
 
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
一比一原版(UMN毕业证)明尼苏达大学毕业证如何办理
 
Requirement Traceability in Xen Functional Safety
Requirement Traceability in Xen Functional SafetyRequirement Traceability in Xen Functional Safety
Requirement Traceability in Xen Functional Safety
 
Microservice Teams - How the cloud changes the way we work
Microservice Teams - How the cloud changes the way we workMicroservice Teams - How the cloud changes the way we work
Microservice Teams - How the cloud changes the way we work
 
UI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
UI5con 2024 - Boost Your Development Experience with UI5 Tooling ExtensionsUI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
UI5con 2024 - Boost Your Development Experience with UI5 Tooling Extensions
 
Measures in SQL (SIGMOD 2024, Santiago, Chile)
Measures in SQL (SIGMOD 2024, Santiago, Chile)Measures in SQL (SIGMOD 2024, Santiago, Chile)
Measures in SQL (SIGMOD 2024, Santiago, Chile)
 
All you need to know about Spring Boot and GraalVM
All you need to know about Spring Boot and GraalVMAll you need to know about Spring Boot and GraalVM
All you need to know about Spring Boot and GraalVM
 
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian CompaniesE-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
E-Invoicing Implementation: A Step-by-Step Guide for Saudi Arabian Companies
 
socradar-q1-2024-aviation-industry-report.pdf
socradar-q1-2024-aviation-industry-report.pdfsocradar-q1-2024-aviation-industry-report.pdf
socradar-q1-2024-aviation-industry-report.pdf
 
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
原版定制美国纽约州立大学奥尔巴尼分校毕业证学位证书原版一模一样
 

SSO 5.1 start-up issues

  • 1. © 2014 VMware Inc. All rights reserved. Troubleshooting SSO 5.1 Start-Up issues Frank Buechsel
  • 2. Agenda – SSO architecture – Symptoms of SSO not running or malfunctioning – Suggested troubleshooting procedure – Case studies – Useful command line options
  • 4. SSO 5.1 architecture • Status for the actual java wrapper • Does not reflect the status of the 4 sub systems • IMS (https://localhost:7444/ims/STSService?wsdl) • Lookupservice (https://localhost:7444/lookupservice/sdk) • ROOT (vFabric) (https://localhost:7444) • SSO-Adminserver (https://localhost:7444/sso-adminserver/sdk)
  • 5. Symptoms of SSO not running or malfunctioning
  • 6. Symptoms of SSO not running or malfunctioning 1/3 • vCenter Server unable to start vpxd.log: 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] STS URI set to: https://vCenter.newhire.local:7444/ims/STSService?wsdl 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Admin URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.312-07:00 [04628 info '[SSO][CreateSsoFacade]'] [CreateUserDirectory] Groupcheck URI set to: https://vCenter.newhire.local:7444/sso-adminserver/sdk 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [0] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error 'Default'] Found dangling SSL error: [1] error:00000001:lib(0):func(0):reason(1) 2013-05-19T02:45:27.555-07:00 [04628 error '[SSO][SsoFactory_CreateFacade]'] Unable to create SSO facade: vmodl.fault.SystemError. 2013-05-19T02:45:27.555-07:00 [04628 error 'vpxdvpxdMain'] [Vpxd::ServerApp::Init] Init failed: Vpx::Common::Sso::SsoFactory_CreateFacade(sslContext, ssoFacadeConstPtr) --> Backtrace: […] 2013-05-19T02:45:27.556-07:00 [04628 error 'Default'] Failed to intialize VMware VirtualCenter. Shutting down...
  • 7. Symptoms of SSO not running or malfunctioning 2/3 • No login possible in the Web Client / vSphere Client
  • 8. Symptoms of SSO not running or malfunctioning 3/3 • Installation of dependent services failing (Inventory Service, vCenter Server, Web Client)
  • 10. Suggested troubleshooting procedure 1/3 • Check in services.msc if the service is running • Remember that this only referes to the wrapper and tomcat • Check for used ports • Look at the most recent catalina.log • Look at the most recent localhost.log • Look at the imsSystem.log • Look at the config.txt • Look at the database
  • 11. Suggested troubleshooting procedure 2/3 Java exceptions are hard to read without being filtered for useful information • Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:286) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.autowireConstructor(AbstractAutowireCapableBeanFactory.java:993) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBeanInstance(AbstractAutowireCapableBeanFactory.java:897) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.doCreateBean(AbstractAutowireCapableBeanFactory.java:485) at org.springframework.beans.factory.support.AbstractAutowireCapableBeanFactory.createBean(AbstractAutowireCapableBeanFactory.java:456) at org.springframework.beans.factory.support.AbstractBeanFactory$1.getObject(AbstractBeanFactory.java:291) at org.springframework.context.support.AbstractApplicationContext.invokeBeanFactoryPostProcessors(AbstractApplicationContext.java:626) at org.springframework.context.support.AbstractApplicationContext.refresh(AbstractApplicationContext.java:407) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.access$001(SecurityAwareClassPathXmlApplicationContext.java:27) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext$1.run(SecurityAwareClassPathXmlApplicationContext.java:164) at com.rsa.ims.security.spi.SimpleSecurityContextImpl.doAs(SimpleSecurityContextImpl.java:82) at com.rsa.security.SecurityContext.doAs(SecurityContext.java:419) at com.rsa.security.SecurityContext.doAsSystem(SecurityContext.java:461) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.refresh(SecurityAwareClassPathXmlApplicationContext.java:161) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:139) at org.springframework.context.support.ClassPathXmlApplicationContext.<init>(ClassPathXmlApplicationContext.java:105) at com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext.<init>(SecurityAwareClassPathXmlApplicationContext.java:90) at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method) at sun.reflect.NativeConstructorAccessorImpl.newInstance(Unknown Source) at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(Unknown Source) at java.lang.reflect.Constructor.newInstance(Unknown Source) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:126) ... 29 more Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) at org.springframework.beans.BeanUtils.instantiateClass(BeanUtils.java:141) at org.springframework.beans.factory.support.SimpleInstantiationStrategy.instantiate(SimpleInstantiationStrategy.java:105) at org.springframework.beans.factory.support.ConstructorResolver.autowireConstructor(ConstructorResolver.java:278) ... 57 more
  • 12. Suggested troubleshooting procedure 3/3 • Log bundle analysis the manual way (will always read in the latest log) • $ ls -tr catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc -l Expected output would be “4” • $ ls -tr localhost.* | tail -n 1 | xargs cat | egrep '(Caused)' Expected output would be nothing • $ egrep '(Caused)' imsSystem.log Expected output would be nothing • $ cat config.txt | grep -F db. | tail -n 11 | grep com.rsa (IMS component configuration) • $ cat config.txt | grep -F db. | tail -n 11 | grep " db" (lookupservice db configuration) Expected output would be matching information
  • 14. Case studies – Normal start-up 1/3 No exceptions in catalina.log, localhost.log and imsSystem.log catalina.log
  • 15. Case studies – Normal start-up 2/3 localhost.log imsSystem.log
  • 16. Case studies – Normal start-up 3/3 IMS db configuration $ less config.txt | grep -F db. | tail -n 11 | grep " db" [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://; serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 10:14:21,956 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 10:14:21,957 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 10:14:21,985 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER Lookupservice db configuration $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 10:14:21,953 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 10:14:21,955 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0
  • 17. Case studies – DB host not reachable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Network error IOException: Connection refused: connect) Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Network error IOException: Connection refused: connect Caused by: java.net.ConnectException: Connection refused: connect
  • 18. Case studies – RSA database offline • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Cannot open database "RSA" requested by the login. The login failed.) Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Cannot open database "RSA" requested by the login. The login failed.
  • 19. Case studies – Expired RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Reason: The password of the account must be changed.
  • 20. Case studies – Incorrect RSA_USER password • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'ims' defined in class path resource [beanRefContext.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.components.spring.SecurityAwareClassPathXmlApplicationContext]: Constructor threw exception; nested exception is org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.factory.BeanCreationException: Error creating bean with name 'DatabaseMetadataBean' defined in class path resource [ims-components-common.xml]: Instantiation of bean failed; nested exception is org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.rsa.ims.common.DatabaseMetadataBean]: Constructor threw exception; nested exception is org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: org.apache.commons.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user 'RSA_USER'.) Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'. Caused by: java.lang.RuntimeException: java.lang.reflect.InvocationTargetException Caused by: java.lang.reflect.InvocationTargetException Caused by: java.lang.IllegalStateException: ComponentUtils not initialized Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Login failed for user 'RSA_USER'.
  • 21. Case studies – Incorrect db information after db move • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 0 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ Caused by: org.springframework.beans.BeanInstantiationException: Could not instantiate bean class [com.vmware.vim.lookup.impl.DbStorage]: Constructor threw exception; nested exception is com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: com.vmware.vim.lookup.exception.StorageException: Error executing statement Caused by: java.sql.SQLException: Unable to get information from SQL Server: VCENTER2. • $ less config.txt | grep -F db. | tail -n 11 | grep com.rsa [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.domain= [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.instance=RSA [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.type=MSSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.msserverinstance=VCSQL [2013-05-18 11:30:10,664 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.hostname=VCENTER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] com.rsa.db.port=0 • $ less config.txt | grep -F db. | tail -n 11 | grep " db“ [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.url=jdbc:jtds:sqlserver://;serverName=;instance=VCSQL;databaseName=RSA [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.user=RSA_USER [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.type=Mssql [2013-05-18 11:30:10,665 INFO StaticDataReporter com.vmware.vim.ssoconfig] db.host=VCENTER2
  • 22. Case studies – DC unavailable • $ ls catalina* | tail -n 1 | xargs awk -F "INFO " '{print $2}' | tail -n 4 | grep Starting | wc –l 4 • $ ls localhost.* | tail -n 1 | xargs cat | egrep '(Caused)‘ • $ egrep '(Caused)' imsSystem.log Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect Caused by: javax.naming.NamingException: getInitialContext failed. javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 [Root exception is javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268] Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create a managed connection 'ldap://DC.newhire.local:3268' with 'newhireadministrator' Reason: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.resource.spi.ResourceAdapterInternalException: Unable to create managed connection DC.newhire.local:3268 Caused by: javax.naming.CommunicationException: DC.newhire.local:3268 [Root exception is java.net.ConnectException: Connection timed out: connect] Caused by: java.net.ConnectException: Connection timed out: connect
  • 24. Useful Command Line options 1/8 • Autodiscovery after installation is finished • ssocli configure-riat -a discover-is -u admin --verbose
  • 25. Useful Command Line options 2/8 • List identity sources (useful as this information is not collected in an SSO log bundle) • ssocli manage-identity-sources -a list -u admin
  • 26. Useful Command Line options 3/8 • Delete an identity source • ssocli manage-identity-sources -a delete -u admin -g <ims.id>
  • 27. Useful Command Line options 4/8 • Create an identity source • ssocli manage-identity-sources -a create -u admin
  • 28. Useful Command Line options 5/8 • Change the password for SSO admins and the SSO master password • ssocli reset-admin-password • ssocli manage-secrets -a change
  • 29. Useful Command Line options 6/8 • Unlock the system after too many system changes • ssocli manage-secrets -a recover
  • 30. Useful Command Line options 7/8 • Testing database connectivity without SQL Management Studio • sqlcmd -S hostnameinstance -U RSA_USER -d RSA
  • 31. Useful Command Line options 8/8 • Silent uninstall of SSO • msiexec /qn /x {DEC4C346-414B-4814-9BF3-CAC14154B55A} MASTER_PASSWORD <master password>

Editor's Notes

  1. IMS and Lookupservice are dependent on database connection to be able to start.
  2. It is not possible to edit an identity source using the command line