RSA Authentication Manager 8.x trusted realms not working (java.net.UnknownHostException)
2 years ago
Originally Published: 2015-05-26
Article Number
000061499
Applies To
RSA Product Set: SecurID
RSA Product/Service Type:  Authentication Manager 
RSA Version/Condition: 8.x
 
Issue
Trusted realm authentication is not working properly.
Enabled the verbose for trace log on local Authentication Manager instance and see the following error message in imsTrace.log.
  
2015-05-25 15:04:00,453, [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'], 
(EJBRemoteTarget.java:316), trace.com.rsa.command.EJBRemoteTargetBase, ERROR, am81pri.dc.rsa.shanghai.com,,,,
Unable to connect to downgraded EJB/2.1 command server.null
2015-05-25 15:04:00,453, [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'], 
(EJBRemoteTarget.java:317), trace.com.rsa.command.EJBRemoteTargetBase, DEBUG, am81pri.dc.rsa.shanghai.com,,,,
Unable to connect to downgraded EJB/2.1 command server.
javax.naming.ServiceUnavailableException [Root exception is java.net.UnknownHostException: marge.csau.ap.rsa.net]
    at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:34)
    at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:767)
    at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:368)

 
Cause
The hostname of the remote AM server can't be resolved or the remote AM server is offline.
Resolution
Go to Security Console > Administration > Trusted Realms > Manage Existing and do the following.
  1. If the remote trusted realm no longer exists, delete the trusted realm.
  2. If the hostname/ip of remote trusted realm has been changed, update the trusted realm package.
  3. If the remote trusted realm server is offline, bring that server online and this issue should be automatically fixed.

Related Articles

Trending Articles

Don't see what you're looking for?