Hello
I recently made a migration to IDM 4.0.1 with the patch UA4.0.1. . The
problem occurred after migrating regards right of the user application
admin. In the config panel admin is administrator of the
application,security, compliance, roles and module RBPM. Unfortunately
when I try to change anything in the application , in the RBPM and
Provisioning tab, I get the following error:

An error occurred processing the request. (The user cn = admin, o =
gsecoll not have rights to change the navigation element: cn = Self
Service, cn = NavItems, UIConfig cn =, cn = AppConfig, cn =
UserApplicationGSE, cn = DriverGSE or = gsecoll .)

The Role and resource driver is configured with the correct parameters
of the user application.

and in the server.log:


16:48:48,898 INFO [STDOUT] ERROR [RBPM]
[com.novell.idm.security.ajaxservice.NavItemConfig: saveNavItem] An
error occurred processing the request. (The user cn = admin, o = gsecoll
not have rights to change the navigation element: cn = Self Service, cn
= NavItems, UIConfig cn =, cn = AppConfig, cn = UserApplicationGSE, cn =
DriverGSE or = gsecoll .)
com.novell.idm.security.gui.RbpmException: User cn = admin, o = gsecoll
has no rights to modify navigation item: Self Service, cn =, cn =
NavItems, UIConfig cn =, cn = AppConfig, cn = UserApplicationGSE, cn =
DriverGSE or = gsecoll.
at
at
com.novell.idm.security.ajaxservice.NavItemConfig. saveNavItem
(NavItemConfig.java: 422)
at sun.reflect.NativeMethodAccessorImpl.invoke0 (Native
Method)
at sun.reflect.NativeMethodAccessorImpl.invoke
(NativeMethodAccessorImpl.java: 39)
at sun.reflect.DelegatingMethodAccessorImpl.invoke
(DelegatingMethodAccessorImpl.java: 25)
at java.lang.reflect.Method.invoke (Method.java: 597)
at com.novell.ajax.juice.UncachedActionService.execut e
(UncachedActionService.java: 119)
at com.novell.ajax.juice.AjaxServiceHandlerMgr.handle Request
(AjaxServiceHandlerMgr.java: 88)
at com.novell.ajax.juice.servlet.UIQueryServlet.doPos t
(UIQueryServlet.java: 199)
at javax.servlet.http.HttpServlet.service (HttpServlet.java:
637)
at javax.servlet.http.HttpServlet.service (HttpServlet.java:
717)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 290)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at com.novell.soa.common.i18n.BestLocaleServletFilter .doFilter
(BestLocaleServletFilter.java: 239)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 235)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at com.novell.common.AntiCsrfServletFilter.doFilter
(AntiCsrfServletFilter.java: 197)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 235)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at com.novell.afw.portal.i18n.CharacterEncodingFilter .doFilter
(CharacterEncodingFilter.java: 135)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 235)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at com.novell.soa.common.i18n.URILoggerServletFilter. doFilter
(URILoggerServletFilter.java: 63)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 235)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at org.jboss.web.tomcat.filters.ReplyHeaderFilter.doF ilter
(ReplyHeaderFilter.java: 96)
at
org.apache.catalina.core.ApplicationFilterChain.in ternalDoFilter
(ApplicationFilterChain.java: 235)
at org.apache.catalina.core.ApplicationFilterChain.do Filter
(ApplicationFilterChain.java: 206)
at org.apache.catalina.core.StandardWrapperValve.invo ke
(StandardWrapperValve.java: 235)
at org.apache.catalina.core.StandardContextValve.invo ke
(StandardContextValve.java: 191)
at
org.jboss.web.tomcat.security.SecurityAssociationV alve.invoke
(SecurityAssociationValve.java: 190)
at org.apache.catalina.authenticator.AuthenticatorBas e.invoke
(AuthenticatorBase.java: 433)
at org.jboss.web.tomcat.security.JaccContextValve.inv oke
(JaccContextValve.java: 92)
at
at
at org.apache.catalina.core.StandardHostValve.invoke
(StandardHostValve.java: 127)
at org.apache.catalina.valves.ErrorReportValve.invoke
(ErrorReportValve.java: 102)
at
org.jboss.web.tomcat.service.jca.CachedConnectionV alve.invoke
(CachedConnectionValve.java: 158)
at org.apache.catalina.core.StandardEngineValve.invok e
(StandardEngineValve.java: 109)
at org.apache.catalina.connector.CoyoteAdapter.servic e
(CoyoteAdapter.java: 330)
at org.apache.coyote.http11.Http11Processor.process
(Http11Processor.java: 829)
at org.apache.coyote.http11.Http11Protocol $
Http11ConnectionHandler.process (Http11Protocol.java: 598)
at org.apache.tomcat.util.net.JIoEndpoint $ Worker.run
(JIoEndpoint.java: 447)
at java.lang.Thread.run (Thread.java: 662)

I re-installed the patch, I tried to reconfigure the permissions with
the configupdate.sh but I can not change or add a new administrator
user.

Someone can help me?


--
snestola
------------------------------------------------------------------------
snestola's Profile: http://forums.novell.com/member.php?userid=31372
View this thread: http://forums.novell.com/showthread.php?t=448726