Hi all,

I have a very interesting issue. I installed IDM 4.5 (standalone
installation) but uaadmin has no effective rights in the UA. I tried to
reinstall UA, also I removed DB before and install it, I double checked
UA and Resource drivers (seems to be OK) and I cannot find where the
problem is. I see the following errors in the tomcat log files but I do
not know how to solve it.
Please, may you help me?

The part of Tomcat Log is here:

2015-05-07 17:04:07,647 [localhost-startStop-1] INFO
com.novell.idm.security.authorization.service.Auth orizationManagerService-
[RBPM] [Create_Authorization] Initiated by
com.novell.idm.security.authorization.service.Auth orizationManagerService;
Auth Object ID: cn=UserR
eportsMenu,cn=NavItems,cn=UIConfig,cn=AppConfig,cn =UserApplication,cn=driverset,ou=idm,ou=services,o =system;
Message: Authorization created successfully

2015-05-07 17:04:07,657 [localhost-startStop-1] ERROR
com.novell.idm.security.authorization.service.Auth orizationManagerService-
[RBPM] Error upon setting effective rights for attribute:
nrfAccessListNavItem on object:
cn=SelfService,cn=NavItems,cn=UIConfig,cn=AppConfi g,
cn=UserApplication,cn=driverset,ou=idm,ou=services ,o=system for trustee:
t=ZDS.
com.novell.srvprv.spi.security.IDMAuthorizationExc eption: Error upon
setting effective rights for attribute: nrfAccessListNavItem on object:
cn=SelfService,cn=NavItems,cn=UIConfig,cn=AppConfi g,cn=UserApplication,cn=driverset,ou=idm,ou=servic es,o=system
for trustee: t=ZDS
..
at
com.novell.idm.security.authorization.ldap.LdapRig htsUtil.setACL(LdapRightsUtil.java:245)
at
com.novell.idm.security.authorization.service.Auth orizationManagerService.addAuthorization(Authoriza tionManagerService.java:362)
at
com.novell.idm.security.authorization.service.Auth orizationManagerService.populateDefaultACLs(Author izationManagerService.java:1503)
....
....
at java.lang.Thread.run(Unknown Source)
Caused by: com.novell.srvprv.spi.security.IDMAuthorizationExc eption:
Error occured calculating effective rights for attribute: [Entry Rights]
on object:
cn=SelfService,cn=NavItems,cn=UIConfig,cn=AppConfi g,cn=UserApplication,cn=driverset,ou=idm,ou=servic es,o=system
for trustee: t=ZDS.
at
com.novell.idm.security.authorization.ldap.LdapRig htsUtil.getPropertyRights(LdapRightsUtil.java:149)
at
com.novell.idm.security.authorization.ldap.LdapRig htsUtil.setACL(LdapRightsUtil.java:210)
.... 33 more
Caused by: javax.naming.NameNotFoundException: [LDAP: error code 32 -
NDS error: no such entry (-601)]; remaining name ''
at com.sun.jndi.ldap.LdapCtx.mapErrorCode(Unknown Source)


....

....

2015-05-07 17:04:07,659 [localhost-startStop-1] INFO
com.novell.idm.security.authorization.service.Auth orizationManagerService-
[RBPM] [Create_Authorization] Initiated by
com.novell.idm.security.authorization.service.Auth orizationManagerService;
Auth Object ID:
cn=SelfService,cn=NavItems,cn=UIConfig,cn=AppConfi g,cn=UserApplication,cn=driverset,ou=idm,ou=servic es,o=system;
Message: Error occurred on creating authorization

2015-05-07 17:04:07,678 [localhost-startStop-1] ERROR
com.novell.idm.security.authorization.service.Auth orizationManagerService-
[RBPM] Error upon setting effective rights for attribute:
nrfAccessListNavItem on object:
cn=WorkDashBoard,cn=NavItems,cn=UIConfig,cn=AppCon fig,cn=UserApplication,cn=driverset,ou=idm,ou=serv ices,o=system
for trustee: t=ZDS.
com.novell.srvprv.spi.security.IDMAuthorizationExc eption: Error upon
setting effective rights for attribute: nrfAccessListNavItem on object:
cn=WorkDashBoard,cn=NavItems,cn=UIConfig,cn=AppCon fig,cn=UserApplication,cn=driverset,ou=idm,ou=serv ices,o=system
for trustee: t=ZDS.
at
com.novell.idm.security.authorization.ldap.LdapRig htsUtil.setACL(LdapRightsUtil.java:245)

....


Thank you for your help!
Milan


--
mjuricek
------------------------------------------------------------------------
mjuricek's Profile: https://forums.netiq.com/member.php?userid=1616
View this thread: https://forums.netiq.com/showthread.php?t=53449