Symantec Access Management

  • 1.  java.lang.ClassNotFoundException: com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor

    Posted Nov 13, 2017 07:01 PM

    Hello, I am installing ASA R12 SP2 for WebSphere 9 on RHEL 7 , and I have installed successfully on WAS 7, 8.5 .

     

    PSM shows WAS 9.0.0.xis supported with R12sp2

     

    Installation was successful(no errors in install log), JCE patching is done, sm_cryptoj.jar copied to JAVA_HOME/jre/lib/ext/

     

    Verified on both SM side and WAS side to ensure all files to be present.

     

    Trustedhost registration is successful.

     

    Enabled TAI through WAS Admin console. 

     

    Upon start up systemout throws:

     

    [11/12/17 20:20:18:600 CST] 00000001 FfdcProvider W com.ibm.ws.ffdc.impl.FfdcProvider logIncident FFDC1003I: FFDC Incident emitted on /opt/WebSphere/AppServer/profiles/lim/logs/ffdc/server1_29f00a_17.11.12_20.20.18.5984624722556578287931.txt com.ibm.ws.security.web.TrustAssociationManager.initialize 178
    [11/12/17 20:20:18:601 CST] 00000001 TrustAssociat E SECJ0125E: Trust Association Init Unable to load Trust Association class com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor.

     

    FFDC Log shows:

     

     /opt/WebSphere/AppServer/profiles/lim/logs/ffdc/server1_29f00a_17.11.12_20.20.18.5984624722556578287931.txt
    at com.ibm.ws.security.core.distSecurityComponentImpl.initializeSSOTAI(distSecurityComponentImpl.java:1081)
    at com.ibm.ws.security.core.distSecurityComponentImpl.initialize(distSecurityComponentImpl.java:397)
    at com.ibm.ws.security.core.SecurityComponentImpl.initialize(SecurityComponentImpl.java:94)
    at com.ibm.ws.runtime.component.ContainerHelper.initWsComponent(ContainerHelper.java:1193)
    at com.ibm.ws.runtime.component.ContainerHelper.initializeComponent(ContainerHelper.java:1100)
    at com.ibm.ws.runtime.component.ContainerHelper.initializeComponents(ContainerHelper.java:902)
    at com.ibm.ws.runtime.component.ContainerImpl.initializeComponents(ContainerImpl.java:776)
    at com.ibm.ws.runtime.component.ContainerImpl.initializeComponents(ContainerImpl.java:750)
    at com.ibm.ws.runtime.component.ServerImpl.initialize(ServerImpl.java:377)
    at com.ibm.ws.runtime.WsServerImpl.bootServerContainer(WsServerImpl.java:293)
    at com.ibm.ws.runtime.WsServerImpl.start(WsServerImpl.java:224)
    at com.ibm.ws.runtime.WsServerImpl.main(WsServerImpl.java:697)
    at com.ibm.ws.runtime.WsServer.main(WsServer.java:59)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:95)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:55)
    at java.lang.reflect.Method.invoke(Method.java:508)
    at com.ibm.wsspi.bootstrap.WSLauncher.launchMain(WSLauncher.java:234)
    at com.ibm.wsspi.bootstrap.WSLauncher.main(WSLauncher.java:101)
    at com.ibm.wsspi.bootstrap.WSLauncher.run(WSLauncher.java:82)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:95)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:55)
    at java.lang.reflect.Method.invoke(Method.java:508)
    at org.eclipse.equinox.internal.app.EclipseAppContainer.callMethodWithException(EclipseAppContainer.java:587)
    at org.eclipse.equinox.internal.app.EclipseAppHandle.run(EclipseAppHandle.java:198)
    at org.eclipse.core.runtime.internal.adaptor.EclipseAppLauncher.runApplication(EclipseAppLauncher.java:110)
    at org.eclipse.core.runtime.internal.adaptor.EclipseAppLauncher.start(EclipseAppLauncher.java:79)
    at org.eclipse.core.runtime.adaptor.EclipseStarter.run(EclipseStarter.java:354)
    at org.eclipse.core.runtime.adaptor.EclipseStarter.run(EclipseStarter.java:181)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:95)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:55)
    at java.lang.reflect.Method.invoke(Method.java:508)
    at org.eclipse.core.launcher.Main.invokeFramework(Main.java:340)
    at org.eclipse.core.launcher.Main.basicRun(Main.java:282)
    at org.eclipse.core.launcher.Main.run(Main.java:981)
    at com.ibm.wsspi.bootstrap.WSPreLauncher.launchEclipse(WSPreLauncher.java:412)
    at com.ibm.wsspi.bootstrap.WSPreLauncher.main(WSPreLauncher.java:173)

    ==> Performing default dump from com.ibm.ws.security.core.SecurityDM :Sun Nov 12 20:20:18 CST 2017
    com.ibm.ws.security.config.SecurityConfigImpl@6f54ad9b /opt/WebSphere/AppServer/profiles/lim/config/cells/Node02Cell/security.xml (admin) :java.lang.ClassNotFoundException: com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor

     

    What could I be missing? Thanks in advance.



  • 2.  Re: java.lang.ClassNotFoundException: com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor

    Posted Nov 13, 2017 09:16 PM

    Hi Anil, try copying  sm_cryptoj.jar to WS_HOME\java\jre \lib\ext directory.

     

    https://support.ca.com/cadocs/0/CA%20SiteMinder%20Agent%20for%20WebSphere%20r12%20SP2-ENU/Bookshelf_Files/PDF/SMWebSpher… 

     



  • 3.  Re: java.lang.ClassNotFoundException: com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor
    Best Answer

    Posted Nov 13, 2017 10:04 PM

    Also looking at PSM ASA 12.0 SP2 Supports ONLY WAS 9.0.0.X 64 bit Network Server Deployment on RHEL 7.x

     

     

     

    Are you sure the flavor of the WAS you are installing is "Network Server Deployment" family and not the Standalone deployment?

     

    IBM Knowledge Center 

     

     

     

    IBM Knowledge Center 

     



  • 4.  Re: java.lang.ClassNotFoundException: com.netegrity.siteminder.websphere.auth.SmTrustAssociationInterceptor

    Posted Nov 14, 2017 10:39 AM

    Hi Ujwol, Thanks for the reply. No we are not using ND as this is a test environment. It is ridiculously expensive to configure ND in terms of licensing in dev enviroments. Does it mean SM TAI is not supported in standalone?

     

    I am creating a ticket with support also, appreciate any one else suggesting work arounds?