Symantec Access Management

  • Private Community

  • 1.  NullPointerException when i access a particular federation

    Posted Jul 18, 2017 04:43 PM

    Hello Everyone,

     

    I am having an issue when i try to access a particular federation in our pre-prod environment. It's a IDP-initiated federation partnership and we are using Web Agent-Option pack .Here is the error i am seeing in FWSTrace.log

     

    Error Message:

     

    [07/18/2017][18:53:40][207037][3410802432][168e0cad-45ca8453-3939853e-a34fec1f-052425a2-f][SSO.java][doGet][Transaction with ID: 168e0cad-45ca8453-3939853e-a34fec1f-052425a2-f failed. Reason: SSO_GET_EXCEPTION]
    [07/18/2017][18:53:40][207037][3410802432][168e0cad-45ca8453-3939853e-a34fec1f-052425a2-f][SSO.java][doGet][Exception caught in class com.netegrity.affiliateminder.webservices.saml2.SSO, method doGet: java.lang.NullPointerException]
    [07/18/2017][18:53:40][207037][3410802432][168e0cad-45ca8453-3939853e-a34fec1f-052425a2-f][SSO.java][doGet][Stack Trace: java.lang.NullPointerException
    at com.netegrity.util.DefaultObjectPoolImpl.releaseObject(DefaultObjectPoolImpl.java:188)
    at com.netegrity.SAML2.util.JAXBContextPool.releaseJAXBContextObject(JAXBContextPool.java:62)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.b(DashoA10*..:2735)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.a(DashoA10*..:2705)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.a(DashoA10*..:2686)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.a(DashoA10*..:2369)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.a(DashoA10*..:2027)
    at com.netegrity.affiliateminder.webservices.saml2.SSO.doGet(DashoA10*..:345)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:617)
    at javax.servlet.http.HttpServlet.service(HttpServlet.java:717)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doFilter(ReplyHeaderFilter.java:96)
    at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
    at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
    at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:235)
    at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
    at org.jboss.web.tomcat.security.SecurityAssociationValve.invoke(SecurityAssociationValve.java:183)
    at org.jboss.web.tomcat.security.JaccContextValve.invoke(JaccContextValve.java:95)
    at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.process(SecurityContextEstablishmentValve.java:126)
    at org.jboss.web.tomcat.security.SecurityContextEstablishmentValve.invoke(SecurityContextEstablishmentValve.java:70)
    at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
    at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
    at com.amfam.se.valves.AmfamStruts01Valve.invoke(AmfamStruts01Valve.java:99)
    at org.jboss.web.tomcat.service.jca.CachedConnectionValve.invoke(CachedConnectionValve.java:158)
    at com.amfam.valves.TPSAccessLogValve.invoke(TPSAccessLogValve.java:38)
    at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
    at org.jboss.web.tomcat.service.request.ActiveRequestResponseCacheValve.internalProcess(ActiveRequestResponseCacheValve.java:74)
    at org.jboss.web.tomcat.service.request.ActiveRequestResponseCacheValve.invoke(ActiveRequestResponseCacheValve.java:47)
    at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:330)
    at org.apache.coyote.ajp.AjpProcessor.process(AjpProcessor.java:437)
    at org.apache.coyote.ajp.AjpProtocol$AjpConnectionHandler.process(AjpProtocol.java:385)
    at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:451)
    at java.lang.Thread.run(Thread.java:745)
    ]
    [07/18/2017][18:53:40][207037][3410802432][168e0cad-45ca8453-3939853e-a34fec1f-052425a2-f][SSO.java][doGet][Ending SAML2 Single Sign-On Service request processing with HTTP error 500]

     

    Not sure what's wrong with these particular federation. All other federations are working fine. Looking for some ideas to resolve the issue.

     

    Environment:

    Web agent option pack version: 12.50.0000.732

    Operating System of Web server: RHEL 6.8 x86 64

    SiteMinder policy server version: 12.52.106.2209

    Operating System of policy server: RHEL 6.7 x86 64

     

    Thank you,

    Naveen



  • 2.  Re: NullPointerException when i access a particular federation
    Best Answer

    Posted Jul 19, 2017 09:43 AM

    Hi Naveen,

     

    I remember there was some defect with r12.5 option pack.

     

    Please do the following as a workaround.

    please remove the sax.jar, dom.jar, and namespace.jar files from the affwebservices\WEB-INF\lib folder and redeploy the application?

    Please take the backup  of the affwebservices.war file if it needs to rolled back.

     

    Thanks,

    Sharan



  • 3.  Re: NullPointerException when i access a particular federation

    Posted Dec 08, 2017 10:51 AM

    Sharan,

    we faced similar error in our production last night with SP-initiated federations. So we take a backup files (sax.jar, dom.jar, and namespace.jar) and removed those files from affwebservices\WEB-INF\lib directory.

     

    Once it's done we restarted the application server (Jboss in our case) and everything is working as expected.

     

    Thank you,

    Naveen



  • 4.  Re: NullPointerException when i access a particular federation

    Posted Jul 19, 2017 02:48 PM

    Hi Naveen, 

    If this is a problem with single partnership, Please check your remote entity and partnership if there were any mismatch or manual updates done to the setup.