We are unable to make any changes in the AdminUI under the
partnerships configuration pane.
The AdminUI reports the following error message :
Caused by: com.ca.federation.client.XPSException: Failed to get the
DD Reference for an Attribute, Attr =
CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod
= FED, Class = PartnershipBase : CA : XPS : sm-xpssvc-00140 at
com.ca.federation.client.XPSHandle.manageObjects(Unknown Source)
~[fedclient.jar:?] ... 93 more
How can we solve this ?
The issue appears to be related to be fact that you did not add the
data definition files for Federation objects when you configured your
Policy server.
When the issue is triggered on the AdminUI, the Policy Server reports
a similar error message :
smps.log
[10374/139924107941632][Tue Oct 15 2019
17:54:12][XPSSvcHandlerManageObjects.cpp:625][CreateObject][ERROR][sm-xpssvc-00140]
Failed to get the DD Reference for an Attribute, Attr =
CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod
= FED, Class = PartnershipBase
server.log
Caused by: com.ca.federation.client.XPSException: Failed to get the
DD Reference for an Attribute, Attr =
CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod
= FED, Class = PartnershipBase : CA : XPS : sm-xpssvc-00140 at
com.ca.federation.client.XPSHandle.manageObjects(Unknown Source)
~[fedclient.jar:?] ... 93 more
AdminUI 12.8SP2CR00 on RedHat 6;
Policy Server 12.8SP1CR00 on RedHat 6;
Policy Server JDK jdk1.8.0_171 64bit;
Policy Store on CA Directory 12.6.00;
Follow this procedure to solve the issue :
1. Take a backup of the Policy Store from your enterprise backup
tool;
2. If you have several instances of Policy Store, shut down the
other ones to keep only 1 instance running;
3. Take a siteminder backup by running command :
xpsexport -xb -npass policystore.xml
4. Apply the data structures to the Policy Store :
You have 2 choices :
- Go to siteminder_home\xps\dd folder and run :
XPSDDInstall SmMaster.xdd
ref.:
Import the Policy Store Data Definitions
https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/single-sign-on/12-8/installing/install-a-policy-server/configure-ldap-directory-servers-as-policy-session-and-key-stores/configure-an-ldap-directory-server-as-a-policy-store/configure-a-ca-directory-policy-store.html
or
- Go to siteminder_home\xps\dd folder and run in this order :
XPSDDInstall SmObjects.xdd
XPSDDInstall FssSmObjects.xdd
XPSDDInstall SOAObjects objects
XPSDDInstall SoaSmObjects.xdd
XPSDDInstall EPMObjects.xdd
XPSDDInstall CDSObjects.xdd
XPSDDInstall FedObjects.xdd
XPSDDInstall SecCat.xdd
XPSDDInstall SPSObjects.xdd
XPSDDInstall CHSObjects.xdd
then follow the KD :
Failed to get the DD Reference for an Attribute
https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=6945
5. Run XPSSweeper;
6. Stop the SM WAMUI service;
7. Remove WAMUI trusted host using XPSExplorer;
8. Delete directory $ADMINUI$/server/default/data/derby and
$ADMINUI$/server/default/data/siteminder;
9. Run xpsregclient siteminder:<password> -adminui-setup;
10. Start SM WAMUI service;