Unable to SAVE changes in WAM UI

book

Article ID: 140394

calendar_today

Updated On:

Products

CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On Agents (SiteMinder) CA Single Sign On Federation (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) SITEMINDER

Issue/Introduction

 

We are unable to make any changes in the AdminUI under the
partnerships configuration pane. 

The AdminUI reports the following error message :

  Caused by: com.ca.federation.client.XPSException: Failed to get the
   DD Reference for an Attribute, Attr =
   CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod
   = FED, Class = PartnershipBase : CA : XPS : sm-xpssvc-00140 at
   com.ca.federation.client.XPSHandle.manageObjects(Unknown Source)
   ~[fedclient.jar:?]  ... 93 more

How can we solve this ?

 

Cause


The issue appears to be related to be fact that you did not add the

data definition files for Federation objects when you configured your

Policy server.


When the issue is triggered on the AdminUI, the Policy Server reports

a similar error message :


smps.log


  [10374/139924107941632][Tue Oct 15 2019

  17:54:12][XPSSvcHandlerManageObjects.cpp:625][CreateObject][ERROR][sm-xpssvc-00140]

  Failed to get the DD Reference for an Attribute, Attr =

  CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod

  = FED, Class = PartnershipBase


server.log


  Caused by: com.ca.federation.client.XPSException: Failed to get the

   DD Reference for an Attribute, Attr =

   CA.FED::SPPartnership.GUIDCookieValidityDuration, Vendor = CA, Prod

   = FED, Class = PartnershipBase : CA : XPS : sm-xpssvc-00140 at

   com.ca.federation.client.XPSHandle.manageObjects(Unknown Source)

   ~[fedclient.jar:?]  ... 93 more



Environment


  AdminUI 12.8SP2CR00 on RedHat 6;

  Policy Server 12.8SP1CR00 on RedHat 6;

   Policy Server JDK jdk1.8.0_171 64bit;

  Policy Store on CA Directory 12.6.00;



Resolution


Follow this procedure to solve the issue :

 

  1. Take a backup of the Policy Store from your enterprise backup

     tool;

  2. If you have several instances of Policy Store, shut down the

     other ones to keep only 1 instance running;

  3. Take a siteminder backup by running command :


     xpsexport -xb -npass policystore.xml


  4. Apply the data structures to the Policy Store :


     You have 2 choices :


     - Go to siteminder_home\xps\dd folder and run :


       XPSDDInstall SmMaster.xdd


       ref.:


       Import the Policy Store Data Definitions

       https://techdocs.broadcom.com/content/broadcom/techdocs/us/en/ca-enterprise-software/layer7-identity-and-access-management/single-sign-on/12-8/installing/install-a-policy-server/configure-ldap-directory-servers-as-policy-session-and-key-stores/configure-an-ldap-directory-server-as-a-policy-store/configure-a-ca-directory-policy-store.html


     or


     - Go to siteminder_home\xps\dd folder and run in this order :


       XPSDDInstall SmObjects.xdd

       XPSDDInstall FssSmObjects.xdd

       XPSDDInstall SOAObjects objects

       XPSDDInstall SoaSmObjects.xdd

       XPSDDInstall EPMObjects.xdd

       XPSDDInstall CDSObjects.xdd

       XPSDDInstall FedObjects.xdd

       XPSDDInstall SecCat.xdd

       XPSDDInstall SPSObjects.xdd

       XPSDDInstall CHSObjects.xdd


  then follow the KD :


  Failed to get the DD Reference for an Attribute

  https://ca-broadcom.wolkenservicedesk.com/external/article?articleId=6945


  5. Run XPSSweeper;

  6. Stop the SM WAMUI service;

  7. Remove WAMUI trusted host using XPSExplorer;

  8. Delete directory $ADMINUI$/server/default/data/derby and

     $ADMINUI$/server/default/data/siteminder;

  9. Run xpsregclient siteminder:<password> -adminui-setup;

  10. Start SM WAMUI service;