ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

OAUTH Partnership Error - Exception caught in class OAuthTunnelClient


Article ID: 37301


Updated On:


CA Single Sign On Secure Proxy Server (SiteMinder) CA Single Sign On SOA Security Manager (SiteMinder) CA Single Sign-On



We are trying to setup OAUTH Partnership with Google and Windows Live as the OAUTH Authorization server using this setup, but receiving the following errors:

When trying to access the OAUTH Partnership using the following URL (, we receive the following error on the browser:

HTTP Status 403 - Request Forbidden. Transaction ID: 1711d0d1-8dabc518-86871e25-9f3f46d2-db2f3fee-bcd failed.

Additionally, we are receiving the below errors in FWSTraceLogs and Policy Server Trace logs respectively.


[11/22/2015][05:18:29][4176][7692][5943d488-997e73ef-283abbf0-0a173c11-dcf53006-8][OAuthTunnelClient][getAuthzServerByID][Exception caught in class OAuthTunnelClient, method getAuthzServerByID: java.lang.IllegalArgumentException: "Cannot parse bytes to a ProviderDataResponseData"]

Policy Server Trace Log:

[11/22/2015][00:18:29.835][00:18:29][7560][7408][CServer.cpp:6364][CServer::Tunnel][][][][][][][][][][][][][][][][][][][][][Status: Tunnel error: service 'smjavaapi', function 'JavaTunnelService'. java.lang.ClassNotFoundException:]


Policy server: R12.52 SP01 CR01

SPS: R12.52 SP01 CR01


The error clearly indicates that the OAuthAuthzServerByIDTunnelService class does not exist in the Fedserver Jar file. If the fedserver jar file which is present in your policy server is not having the tunnel service class which causes this error.


Please update the Fedserver Jar file with tunnel service class and restart the policy server.


Component: SMFED