Total Pageviews

Monday, November 18, 2019

HTTP Status 404 – Not Found Message /openam/config/options.htm





HTTP Status 404 – Not Found

Type Status Report
Message /openam/config/options.htm
Description The origin server did not find a current representation for the target resource or is not willing to disclose that one exists.

Apache Tomcat/9.0.21


Solution:

copy context.xml under ../webapps/openam/META-INF


It should solve your issues
Posted by at No comments:

Saturday, November 16, 2019

org.apache.tomcat.util.IntrospectionUtils.setProperty Error setting property [allow] to [*] on class [class org.apache.catalina.valves.RemoteAddrValve]

openam error
org.apache.tomcat.util.IntrospectionUtils.setProperty Error setting property [allow] to [*] on class [class org.apache.catalina.valves.RemoteAddrValve]


It is because RemoteAddrValve under ../../conf/Catalina/localhost/manager.xml  is invalid
because you have changed allow="*" in context.xml and this charactor is not present in context.xml

now change

Valve className="org.apache.catalina.valves.RemoteAddrValve" allow="^.*$"

to
Valve className="org.apache.catalina.valves.RemoteAddrValve" allow=".*"

it should resolve the issue. you should not allow="*" in Prod environment.

Posted by at No comments:

Wednesday, November 13, 2019

Frogerock OpenAM How to Change the amadmin User's Password in External Configuration Store

from forgerock

If OpenAM is configured to use an external configuration store, perform the following steps to change the amadmin user's password:
  1. Log in to the OpenAM console as the administrator, amadmin.
  2. Navigate to Realms > Top Level Realm > Subjects, and then click amAdmin.
  3. On the Edit User page, select Edit next to Password.
  4. On the Change Password page, enter the new password in the New Password field.
  5. Click OK to save your changes.
    If your deployment has multiple OpenAM servers, the new password replicates across all servers

Posted by at No comments:

OpenAM Enabling SNMP Monitoring





You can configure OpenAM to allow you to listen on port 8085 for SNMP monitoring. To enable this you can either use the console, or use the ssoadm command:

$ ssoadm \
 set-attr-defs \
 --servicename iPlanetAMMonitoringService \
 --schematype Global \
 --adminid amadmin \
 --password-file /tmp/pwd.txt \
 --attributevalues iplanet-am-monitoring-snmp-enabled=true
Posted by at No comments:

monitoring OpenAM HTTP whether OpenAM is up, using isAlive.jsp

You can use below commands as per the your environment to see if OpenAM is live or not

http://host1.example.com:8080/openam/isAlive.jsp
http://lb.example.com:8080/openam/isAlive.jsp
 
Posted by at No comments:

Tuesday, November 12, 2019

self signing a cert with authroty and error .srl: No such file or directory



openssl x509 -sha256 -req -in avantastech.req -CA authority.example.com.crt -CAkey trust.key  -extensions server -days 1365 -outform PEM -out avantastech.crt
Signature ok
subject=your certificate subject
Getting CA Private Key
authority.srl: No such file or directory
140486363838352:error:06067099:digital envelope routines:EVP_PKEY_copy_parameters:different parameters:p_lib.c:137:
140486363838352:error:02001002:system library:fopen:No such file or directory:bss_file.c:402:fopen('authority.srl','r')
140486363838352:error:20074002:BIO routines:FILE_CTRL:system lib:bss_file.c:404:

Solution:
to fix this issue

I have included -CAcreateserial -CAserial authority.seq because when i have created authority.seq i dont know what sequence number i can use

openssl x509 -sha256 -req -in avantastech.req -CA authority.com.crt -CAkey trust.key  -extensions server -days 1365 -outform PEM -out avantastech.crt -CAcreateserial -CAserial authrority.seq
and it worked
Posted by at No comments:
Subscribe to: Posts (Atom)