RSA Authentication Manager 8.x trusted realms not working (java.net.UnknownHostException)

3 years ago

Originally Published: 2015-05-26

Article Number

000061499

Applies To

RSA Product Set: SecurID
RSA Product/Service Type: Authentication Manager
RSA Version/Condition: 8.x

Issue

Trusted realm authentication is not working properly.
Enabled the verbose for trace log on local Authentication Manager instance and see the following error message in imsTrace.log.

2015-05-25 15:04:00,453, [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'], 
(EJBRemoteTarget.java:316), trace.com.rsa.command.EJBRemoteTargetBase, ERROR, am81pri.dc.rsa.shanghai.com,,,,
Unable to connect to downgraded EJB/2.1 command server.null
2015-05-25 15:04:00,453, [[ACTIVE] ExecuteThread: '0' for queue: 'weblogic.kernel.Default (self-tuning)'], 
(EJBRemoteTarget.java:317), trace.com.rsa.command.EJBRemoteTargetBase, DEBUG, am81pri.dc.rsa.shanghai.com,,,,
Unable to connect to downgraded EJB/2.1 command server.
javax.naming.ServiceUnavailableException [Root exception is java.net.UnknownHostException: marge.csau.ap.rsa.net]
    at weblogic.jndi.internal.ExceptionTranslator.toNamingException(ExceptionTranslator.java:34)
    at weblogic.jndi.WLInitialContextFactoryDelegate.toNamingException(WLInitialContextFactoryDelegate.java:767)
    at weblogic.jndi.WLInitialContextFactoryDelegate.getInitialContext(WLInitialContextFactoryDelegate.java:368)

Cause

The hostname of the remote AM server can't be resolved or the remote AM server is offline.

Resolution

Go to Security Console > Administration > Trusted Realms > Manage Existing and do the following.

If the remote trusted realm no longer exists, delete the trusted realm.
If the hostname/ip of remote trusted realm has been changed, update the trusted realm package.
If the remote trusted realm server is offline, bring that server online and this issue should be automatically fixed.

Don't see what you're looking for?

Related Articles

Trending Articles