3955: Unable to execute the ssoadm command
You are unable to execute the ssoadm command with the get-realm due to this exception.
Logging configuration class "com.sun.identity.log.s1is.LogConfigReader" failed
com.sun.identity.security.AMSecurityPropertiesException: AdminTokenAction:
FATAL ERROR: Cannot obtain Application SSO token.
Check AMConfig.properties for the following properties
com.sun.identity.agents.app.username
com.iplanet.am.service.password
Logging configuration class "com.sun.identity.log.s1is.LogConfigReader" failed
com.sun.identity.security.AMSecurityPropertiesException: AdminTokenAction:
FATAL ERROR: Cannot obtain Application SSO token.
Check AMConfig.properties for the following properties
com.sun.identity.agents.app.username
com.iplanet.am.service.password
AdminTokenAction: FATAL ERROR: Cannot obtain Application SSO token.
Check AMConfig.properties for the following properties
com.sun.identity.agents.app.username
com.iplanet.am.service.password
Check if the amadmin password is different from the directory manager password for the service management data store. If yes, apply the following workaround.
Workaround. Modify the server configuration XML as follows:
-
Log in to the OpenSSO Console as amadmin.
-
Use the ssoadm.jsp get-svrcfg-xml to get the server configuration XML.
-
Use encode.jsp to encode the amadmin password.
-
Set the encoded password in the two places represented by amadmin-password in the XML. For example:
<User name="User1" type="proxy"> <DirDN> cn=puser,ou=DSAME Users,dc=opensso,dc=java,dc=net </DirDN> <DirPassword> amadmin-password </DirPassword> </User> <User name="User2" type="admin"> <DirDN> cn=dsameuser,ou=DSAME Users,dc=opensso,dc=java,dc=net </DirDN> <DirPassword> amadmin-password </DirPassword> </User> <BaseDN> dc=opensso,dc=java,dc=net </BaseDN> </ServerGroup> -
Use the ssoadm.jsp set-svrcfg-xml to set the altered server configuration XML.
- © 2010, Oracle Corporation and/or its affiliates