I've set up WSO2 IOT server 3.1.0 but i can't wipe data :
Erreur in notification : WIPE_DATA operation failed to execute on
device xxx (ID: xxxxxx)
Can you help me?
thanks.
Here's logs.
11-09 15:48:34.912 24757 24757 D org.wso2.iot.agent.services.AlarmReceiver: Recurring alarm; requesting alarm service.
11-09 15:48:34.923 24757 27610 D OperationManager: New OperationManager created.
11-09 15:48:34.924 24757 27610 I MessageProcessor: Get pending operations from:http://xx.xx.xx.xx:8280/api/device-mgt/android/v1.0/devices/2bd583e008ccbf2f/pending-operations
11-09 15:48:34.925 24757 27610 D MessageProcessor: Reply Payload: []
11-09 15:48:34.926 24757 27610 D APIController: APIController created.
11-09 15:48:34.926 24757 27610 D APIController: invokeAPI called
11-09 15:48:34.926 24757 27610 D IdentityProxy: requestToken called.
11-09 15:48:34.926 24757 27610 D IdentityProxy: token is expired false
11-09 15:48:34.926 24757 27610 D IdentityProxy: token expiry Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:34.926 24757 27610 D IdentityProxy: Using Access Token: efc13b79-ffba-334f-84a1-62b4eaa4fff7
11-09 15:48:34.936 24757 25055 D APIController: Retrieved token expires on:Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:34.938 24757 25055 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:34.938 24757 25055 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:35.002 24757 25055 D APIController: Result :[{"enabled":true,"code":"APPLICATION_LIST","type":"COMMAND","id":107,"status":"PENDING","createdTimeStamp":"2017-11-09 15:48:25.862","isEnabled":false},{"code":"WIPE_DATA","type":"PROFILE","id":106,"status":"PENDING","createdTimeStamp":"2017-11-09 15:47:46.023","isEnabled":true,"payLoad":"{\"pin\":\"3381\"}"}]
11-09 15:48:35.005 24757 25055 D MessageProcessor: Pending Operations List: [{"enabled":true,"code":"APPLICATION_LIST","type":"COMMAND","id":107,"status":"PENDING","createdTimeStamp":"2017-11-09 15:48:25.862","isEnabled":false},{"code":"WIPE_DATA","type":"PROFILE","id":106,"status":"PENDING","createdTimeStamp":"2017-11-09 15:47:46.023","isEnabled":true,"payLoad":"{\"pin\":\"3381\"}"}]
11-09 15:48:35.017 24757 25055 D MessageProcessor: Restarting to send quick update of received pending operations.
11-09 15:48:35.020 24757 25055 I LocalNotification: Polling stopped!
11-09 15:48:35.025 24757 25055 I LocalNotification: Polling started! Interval: 30000
11-09 15:48:35.727 24757 24757 D LocationService: Status changed to: 2 Provider: gps
11-09 15:48:36.113 24757 25055 D OperationManager: Application list sent
11-09 15:48:36.114 24757 25055 D OperationManagerBYOD: Started to wipe data
11-09 15:48:36.116 24757 24757 D APIController: [{"enabled":true,"code":"APPLICATION_LIST","type":"COMMAND","id":107,"status":"PENDING","createdTimeStamp":"2017-11-09 15:48:25.862","isEnabled":false},{"code":"WIPE_DATA","type":"PROFILE","id":106,"status":"PENDING","createdTimeStamp":"2017-11-09 15:47:46.023","isEnabled":true,"payLoad":"{\"pin\":\"3381\"}"}]
11-09 15:48:36.662 24757 24757 D org.wso2.iot.agent.services.AlarmReceiver: Recurring alarm; requesting alarm service.
11-09 15:48:36.669 24757 27621 D OperationManager: New OperationManager created.
11-09 15:48:36.670 24757 27621 I MessageProcessor: Get pending operations from:http://xx.xx.xx.xx:8280/api/device-mgt/android/v1.0/devices/2bd583e008ccbf2f/pending-operations
11-09 15:48:36.680 24757 27621 D MessageProcessor: Reply Payload: [{"code":"APPLICATION_LIST","complianceType":null,"createdTimeStamp":"2017-11-09 15:48:25.862","enabled":true,"id":107,"operationResponse":"[{\"name\":\"ES%20Explorateur%20de%20Fichiers\",\"package\":\"com.estrongs.android.pop\",\"version\":\"4.1.6.9.6\",\"isSystemApp\":false,\"isActive\":false},{\"name\":\"ipconfig\",\"package\":\"com.mankind.ipconfig\",\"version\":\"1.1\",\"isSystemApp\":false,\"isActive\":false},{\"name\":\"WSO2%20Device%20Management%20Agent\",\"package\":\"org.wso2.iot.agent\",\"version\":\"3.1.21\",\"isSystemApp\":false,\"isActive\":true,\"USS\":30948},{\"name\":\"Google%20Play%20services%20for%20Instant%20Apps\",\"package\":\"com.google.android.instantapps.supervisor\",\"version\":\"2.3-release-174342078\",\"isSystemApp\":false,\"isActive\":false},{\"name\":\"QR%20Scanner\",\"package\":\"com.application_4u.qrcode.barcode\",\"version\":\"1.9.6\",\"isSystemApp\":false,\"isActive\":false}]","payLoad":null,"receivedTimeStamp":null,"status":"COMPLETED","type":"COMMAND"},{"code":"WIPE_DATA","complianceType":null,"createdTimeStamp":"2017-11-09 15:47:46.023","enabled":false,"id":106,"operationResponse":null,"payLoad":{"status":"true"},"receivedTimeStamp":null,"status":"COMPLETED","type":"PROFILE"}]
11-09 15:48:36.681 24757 27621 D APIController: APIController created.
11-09 15:48:36.681 24757 27621 D APIController: invokeAPI called
11-09 15:48:36.681 24757 27621 D IdentityProxy: requestToken called.
11-09 15:48:36.681 24757 27621 D IdentityProxy: token is expired false
11-09 15:48:36.681 24757 27621 D IdentityProxy: token expiry Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:36.681 24757 27621 D IdentityProxy: Using Access Token: efc13b79-ffba-334f-84a1-62b4eaa4fff7
11-09 15:48:36.686 24757 25057 D APIController: Retrieved token expires on:Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:36.688 24757 25057 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.688 24757 24757 D LocationService: Location changed> lat:47.2659288 lon:-1.4888419 provider:network
11-09 15:48:36.688 24757 25057 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.694 24757 24757 D APIController: APIController created.
11-09 15:48:36.694 24757 24757 D APIController: invokeAPI called
11-09 15:48:36.694 24757 24757 D IdentityProxy: requestToken called.
11-09 15:48:36.694 24757 24757 D IdentityProxy: token is expired false
11-09 15:48:36.694 24757 24757 D IdentityProxy: token expiry Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:36.694 24757 24757 D IdentityProxy: Using Access Token: efc13b79-ffba-334f-84a1-62b4eaa4fff7
11-09 15:48:36.695 24757 24757 D LocationService: Location Event is published.
11-09 15:48:36.697 24757 25056 D APIController: Retrieved token expires on:Thu Nov 09 15:50:42 GMT+01:00 2017
11-09 15:48:36.698 24757 25056 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.699 24757 25056 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.700 24757 24757 D LocationService: Location changed> lat:47.2659288 lon:-1.4888419 provider:network
11-09 15:48:36.702 24757 24757 D LocationService: Ignore publishing. Duplicate location timestamp.
11-09 15:48:36.704 24757 24757 D LocationUpdateReceiver: Location> Lat:47.2659288 Lon:-1.4888419 Provider:network
11-09 15:48:36.707 24757 25058 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.707 24757 25058 I System.out: (HTTPLog)-Static: isSBSettingEnabled false
11-09 15:48:36.709 24757 24757 D LocationUpdateReceiver: Location> Lat:47.2659288 Lon:-1.4888419 Provider:network
11-09 15:48:36.733 24757 24757 D LocationService: Status changed to: 2 Provider: gps
11-09 15:48:36.751 24757 25056 D APIController: Result :{"responseCode":"Event is published successfully."}
11-09 15:48:36.751 24757 25056 D org.wso2.iot.agent.events.publisher.HttpDataPublisher: Result for request: 312 is 201
11-09 15:48:36.753 24757 24757 D APIController: {"responseCode":"Event is published successfully."}
In logs, everythings seems to be ok.
Thanks for help.
We have found issue with the wipe operation on Android and we have fixed this with the new release of our android agent which is capable with IoT Server 3.1.0.
Please find the apk file and the new source code here.
Thanks,
Related
I've reviewed a lot of answers to similar questions but cannot find this one. On startup I get:
[2022-01-15 12:56:48,823] [] INFO {org.ops4j.pax.logging.spi.support.EventAdminConfigurationNotifier} - Sending Event Admin nofification (configuration successful) to org/ops4j/pax/logging/Configuration
[2022-01-15 12:56:49,009] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Starting WSO2 Carbon...
[2022-01-15 12:56:49,010] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Operating System : Linux 3.10.0-1160.49.1.el7.x86_64, amd64
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Home : /usr/lib/jvm/java-1.8.0-openjdk-1.8.0.312.b07-1.el7_9.x86_64/jre
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Version : 1.8.0_312
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java VM : OpenJDK 64-Bit Server VM 25.312-b07,Red Hat, Inc.
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Carbon Home : /u01/ellucian/wso2is-5.10.0
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - Java Temp Dir : /u01/ellucian/wso2is-5.10.0/tmp
[2022-01-15 12:56:49,011] [] INFO {org.wso2.carbon.core.internal.CarbonCoreActivator} - User : root, en-US, America/New_York
[2022-01-15 12:56:49,108] [] INFO {org.wso2.carbon.crypto.provider.internal.DefaultCryptoProviderComponent} - 'CryptoService.Secret' property has not been set. 'org.wso2.carbon.crypto.provider.SymmetricKeyInternalCryptoProvider' won't be registered as an internal crypto provider. Please set the secret if the provider needs to be registered.
[2022-01-15 12:56:49,234] [] INFO {org.wso2.carbon.event.output.adapter.kafka.internal.ds.KafkaEventAdapterServiceDS} - Successfully deployed the Kafka output event adaptor service
[2022-01-15 12:56:49,721] [] INFO {org.wso2.carbon.identity.oauth.uma.grant.internal.UMA2GrantServiceComponent} - Policy evaluator registered successfully: DefaultPolicyEvaluator
[2022-01-15 12:56:49,722] [] INFO {org.wso2.carbon.identity.oauth.uma.grant.internal.UMA2GrantServiceComponent} - UMA Grant component activated successfully.
[2022-01-15 12:56:50,075] [] INFO {org.wso2.carbon.ldap.server.DirectoryActivator} - Embedded LDAP is disabled.
[2022-01-15 12:56:50,119] [] INFO {org.wso2.carbon.mex.internal.Office365SupportMexComponent} - Office365Support MexServiceComponent bundle activated successfully..
[2022-01-15 12:56:50,132] [] INFO {org.wso2.carbon.mex2.internal.DynamicCRMCustomMexComponent} - DynamicCRMSupport MexServiceComponent bundle activated successfully.
[2022-01-15 12:56:51,436] [] INFO {org.wso2.carbon.user.core.common.DefaultRealmService} - Database already exists. Not creating a new database.
[2022-01-15 12:56:51,859] [] INFO {org.apache.jasper.servlet.TldScanner} - At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
[2022-01-15 12:56:52,175] [] INFO {org.wso2.carbon.identity.authenticator.x509Certificate.internal.X509CertificateServiceComponent} - X509 Certificate Servlet activated successfully..
[2022-01-15 12:56:52,427] [] ERROR {org.wso2.carbon.user.core.common.DefaultRealm} - nullType class java.lang.reflect.InvocationTargetException org.wso2.carbon.user.core.UserStoreException: nullType class java.lang.reflect.InvocationTargetException
at org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions(DefaultRealm.java:397)
at org.wso2.carbon.user.core.common.DefaultRealm.initializeObjects(DefaultRealm.java:224)
at org.wso2.carbon.user.core.common.DefaultRealm.init(DefaultRealm.java:129)
at org.wso2.carbon.user.core.common.DefaultRealmService.initializeRealm(DefaultRealmService.java:276)
at org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRealmService.java:102)
at org.wso2.carbon.user.core.common.DefaultRealmService.<init>(DefaultRealmService.java:115)
at org.wso2.carbon.user.core.internal.Activator.startDeploy(Activator.java:72)
at org.wso2.carbon.user.core.internal.BundleCheckActivator.start(BundleCheckActivator.java:61)
at org.eclipse.osgi.internal.framework.BundleContextImpl$3.run(BundleContextImpl.java:842)
at org.eclipse.osgi.internal.framework.BundleContextImpl$3.run(BundleContextImpl.java:1)
at java.security.AccessController.doPrivileged(Native Method)
at org.eclipse.osgi.internal.framework.BundleContextImpl.startActivator(BundleContextImpl.java:834)
at org.eclipse.osgi.internal.framework.BundleContextImpl.start(BundleContextImpl.java:791)
at org.eclipse.osgi.internal.framework.EquinoxBundle.startWorker0(EquinoxBundle.java:1013)
at org.eclipse.osgi.internal.framework.EquinoxBundle$EquinoxModule.startWorker(EquinoxBundle.java:365)
at org.eclipse.osgi.container.Module.doStart(Module.java:598)
at org.eclipse.osgi.container.Module.start(Module.java:462)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel$1.run(ModuleContainer.java:1820)
at org.eclipse.osgi.internal.framework.EquinoxContainerAdaptor$2$1.execute(EquinoxContainerAdaptor.java:150)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel.incStartLevel(ModuleContainer.java:1813)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel.incStartLevel(ModuleContainer.java:1770)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel.doContainerStartLevel(ModuleContainer.java:1735)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel.dispatchEvent(ModuleContainer.java:1661)
at org.eclipse.osgi.container.ModuleContainer$ContainerStartLevel.dispatchEvent(ModuleContainer.java:1)
at org.eclipse.osgi.framework.eventmgr.EventManager.dispatchEvent(EventManager.java:234)
at org.eclipse.osgi.framework.eventmgr.EventManager$EventThread.run(EventManager.java:345)
Caused by: java.lang.reflect.InvocationTargetException
at sun.reflect.NativeConstructorAccessorImpl.newInstance0(Native Method)
at sun.reflect.NativeConstructorAccessorImpl.newInstance(NativeConstructorAccessorImpl.java:62)
at sun.reflect.DelegatingConstructorAccessorImpl.newInstance(DelegatingConstructorAccessorImpl.java:45)
at java.lang.reflect.Constructor.newInstance(Constructor.java:423)
at org.wso2.carbon.user.core.common.DefaultRealm.createObjectWithOptions(DefaultRealm.java:351)
... 25 more
Caused by: org.wso2.carbon.user.core.UserStoreException: Admin user can not be assigned to Admin role Add-Admin has been set to false. Please do the assign it in user store level
at org.wso2.carbon.user.core.common.AbstractUserStoreManager.addInitialAdminData(AbstractUserStoreManager.java:8513)
at org.wso2.carbon.user.core.ldap.ReadOnlyLDAPUserStoreManager.<init>(ReadOnlyLDAPUserStoreManager.java:246)
at org.wso2.carbon.user.core.ldap.ReadWriteLDAPUserStoreManager.<init>(ReadWriteLDAPUserStoreManager.java:120)
at org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager.<init>(ActiveDirectoryUserStoreManager.java:115)
... 30 more
using ldapsearch I've checked on some of those properties, but specifically here are segments of the admin user object related to being a member of the admin role as queried by the service account. Both do exist:
./ldapsearch -x -W -H ldap://VPWPWDC1.DC1.PENNWEST.EDU/ -D "ethossrvc#pennwest.edu" -b "CN=Staffen\, William,OU=STAFF,OU=Accounts,DC=DC1,DC=Pennwest,DC=EDU"
dn: CN=Staffen\, William,OU=Staff,OU=Accounts,DC=DC1,DC=PENNWEST,DC=EDU
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: user
cn: Staffen, William
sn: Staffen
givenName: William
distinguishedName: CN=Staffen\, William,OU=Staff,OU=Accounts,DC=DC1,DC=PENNWEST,DC=EDU
instanceType: 4
memberOf: CN=AG-ITS-ETHOS-ADMINS,OU=ITS,OU=AccountGroups,OU=Groups,DC=DC1,DC=PENNWEST,DC=EDU
Here is the user-mgt.xml:
<UserManager xmlns:svns="http://org.wso2.securevault/configuration">
17 <Realm>
18 <Configuration>
19 <AddAdmin>false</AddAdmin>
20 <AdminRole>AG-ITS-ETHOS-ADMINS</AdminRole>
21 <AdminUser>
22 <UserName>staffen</UserName>
23 <Password>irrelevant</Password>
24 </AdminUser>
25 <EveryOneRoleName>everyone</EveryOneRoleName>
26
27 <OverrideUsernameClaimFromInternalUsername>true</OverrideUsernameClaimFromInternalUsername>
28 <!-- By default users in this role sees the registry root -->
29 <Property name="isCascadeDeleteEnabled">true</Property>
30 <Property name="initializeNewClaimManager">true</Property>
31 <Property name="dataSource">jdbc/WSO2IdentityDB</Property>
32 </Configuration>
33
34
35 <AuthorizationManager class="org.wso2.carbon.user.core.authorization.JDBCAuthorizationManager">
36 <Property name="GetAllRolesOfUserEnabled">false</Property>
37 <Property name="AdminRoleManagementPermissions">/permission</Property>
38 <Property name="AuthorizationCacheEnabled">true</Property>
39 </AuthorizationManager>
40
41
42
43
44
45 <UserStoreManager class="org.wso2.carbon.user.core.ldap.ActiveDirectoryUserStoreManager">
46 <Property name="TenantManager">org.wso2.carbon.user.core.tenant.CommonHybridLDAPTenantManager</Property>
47 <Property name="defaultRealmName">PENNWEST.EDU</Property>
48 <Property name="Disabled">false</Property>
49 <Property name="kdcEnabled">false</Property>
50 <Property name="ConnectionURL">ldaps://VPWPWDC1.DC1.PENNWEST.EDU:636</Property>
51 <Property name="ConnectionName">CN=SRVC_ethossrvc,OU=Accounts,OU=ServiceAG,DC=DC1,DC=PENNWEST,DC=EDU</Property>
52 <Property name="ConnectionPassword">#########</Property>
53 <Property name="passwordHashMethod">PLAIN_TEXT</Property>
54 <Property name="UserSearchBase">OU=Accounts,DC=DC1,DC=PENNWEST,DC=EDU</Property>
55 <Property name="UserEntryObjectClass">user</Property>
56 <Property name="UserNameAttribute">sAMAccountName</Property>
57 <Property name="isADLDSRole">false</Property>
58 <Property name="userAccountControl">512</Property>
59 <Property name="UserNameListFilter">(objectClass=user)</Property>
60 <Property name="UserNameSearchFilter">(&(objectClass=person)(|(sAMAccountName=?)(mail=?)))</Property>
61 <Property name="UsernameJavaRegEx">[a-zA-Z0-9._-|//]{3,30}$</Property>
62 <Property name="UsernameJavaScriptRegEx">^[\S]{3,30}$</Property>
63 <Property name="PasswordJavaScriptRegEx">^[\S]{5,30}$</Property>
64 <Property name="RolenameJavaScriptRegEx">^[\S]{3,30}$</Property>
65 <Property name="RolenameJavaRegEx">[a-zA-Z0-9._-|//]{3,30}$</Property>
66 <Property name="ReadGroups">true</Property>
67 <Property name="WriteGroups">true</Property>
68 <Property name="EmptyRolesAllowed">true</Property>
69 <Property name="GroupSearchBase">OU=AccountGroups,OU=Groups,DC=DC1,DC=PENNWEST,DC=EDU</Property>
70 <Property name="GroupEntryObjectClass">group</Property>
71 <Property name="GroupNameAttribute">cn</Property>
72 <Property name="SharedGroupNameAttribute">cn</Property>
73 <Property name="SharedGroupSearchBase">OU=AccountGroups,OU=Groups,DC=DC1,DC=PENNWEST,DC=EDU</Property>
74 <Property name="SharedGroupEntryObjectClass">groups</Property>
75 <Property name="SharedTenantNameListFilter">(object=organizationalUnit)</Property>
76 <Property name="SharedTenantNameAttribute">ou</Property>
77 <Property name="SharedTenantObjectClass">organizationalUnit</Property>
78 <Property name="MembershipAttribute">member</Property>
79 <Property name="GroupNameListFilter">(objectcategory=group)</Property>
80 <Property name="GroupNameSearchFilter">(&(objectClass=group)(cn=?))</Property>
81 <Property name="UserRolesCacheEnabled">true</Property>
82 <Property name="Referral">ignore</Property>
83 <Property name="BackLinksEnabled">true</Property>
84 <Property name="MaxRoleNameListLength">100</Property>
85 <Property name="MaxUserNameListLength">100</Property>
86 <Property name="SCIMEnabled">false</Property>
87 <Property name="MultiAttributeSeparator">,</Property>
88 <Property name="ReadTimeout"/>
89 <Property name="RetryAttempts"/>
90
91 <Property name="java.naming.ldap.attributes.binary">objectGUID</Property>
92 <Property name="ImmutableAttributes">profileConfiguration</Property>
93 </UserStoreManager>
94 </Realm>
95 </UserManager>
Any help is appreciated.
EDIT: Also of note: I connected to the sql server as the wso2 admin user for each of the three databases (local, reg, and id) and was able to connect open each and view the tables.
You are getting an error saying,
org.wso2.carbon.user.core.UserStoreException: Admin user can not be assigned to Admin role Add-Admin has been set to false. Please do the assign it in user store level
in WSO2IS-5.10 you can set <AddAdmin>true</AddAdmin> in /repository/conf/user-mgt.xml file , in your user-mgt.xml file it is in false state
I have 389 directory ldap server. I have debian and redhat based servers on my infrastructure.
I have no problems with Ubuntu versions 14-16 and Centos 6 servers. But I am having problems with sssd and ldap services in Centos 7.x versions.
all my changes are listed below step by step. I can not find what is missing or wrong. I'm going crazy.
Dear community, I need your help. I know it was too long.
[root#ldap-test-client]$ cat /etc/redhat-release
CentOS Linux release 7.5.1804 (Core)
[root#ldap-test-client]$ uname -a
Linux ldap-test-client 3.10.0-862.el7.x86_64 #1 SMP Fri Apr 20 16:44:24 UTC 2018 x86_64 x86_64 x86_64 GNU/Linux
package information;
[root#ldap-test-client]$ yum list installed |grep sssd
Failed to set locale, defaulting to C
python-sssdconfig.noarch 1.16.0-19.el7_5.5 #updates
sssd.x86_64 1.16.0-19.el7_5.5 #updates
sssd-ad.x86_64 1.16.0-19.el7_5.5 #updates
sssd-client.x86_64 1.16.0-19.el7_5.5 #updates
sssd-common.x86_64 1.16.0-19.el7_5.5 #updates
sssd-common-pac.x86_64 1.16.0-19.el7_5.5 #updates
sssd-ipa.x86_64 1.16.0-19.el7_5.5 #updates
sssd-krb5.x86_64 1.16.0-19.el7_5.5 #updates
sssd-krb5-common.x86_64 1.16.0-19.el7_5.5 #updates
sssd-ldap.x86_64 1.16.0-19.el7_5.5 #updates
sssd-proxy.x86_64 1.16.0-19.el7_5.5 #updates
[root#ldap-test-client]$ ps aux |grep sssd
root 697 0.0 0.5 282124 6036 ? Ss 11:09 0:00 /usr/sbin/sssd -i --logger=files
root 709 0.0 0.9 306216 9636 ? S 11:09 0:00 /usr/libexec/sssd/sssd_be --domain LDAP --uid 0 --gid 0 --logger=files
root 715 0.0 2.9 289932 29996 ? S 11:09 0:00 /usr/libexec/sssd/sssd_nss --uid 0 --gid 0 --logger=files
root 716 0.0 0.5 269592 5520 ? S 11:09 0:00 /usr/libexec/sssd/sssd_pam --uid 0 --gid 0 --logger=files
testuser+ 1391 0.0 0.0 112676 728 pts/0 R+ 11:17 0:00 grep --color=auto sssd
sssd and ldap configs,
[root#ldap-test-client]$ pwd
/etc/sssd
[root#ldap-test-client]$ ll
total 8
drwx--x--x. 2 sssd sssd 23 Aug 6 11:19 conf.d
-rw------- 1 root root 933 Aug 6 11:31 sssd.conf
[root#ldap-test-client]$ cat sssd.conf
[domain/LDAP]
autofs_provider = ldap
cache_credentials = true
ldap_search_base = dc=domain,dc=com
ldap_user_search_base = ou=People,dc=domain,dc=com
ldap_group_search_base = ou=groups,dc=domain,dc=com
ldap_sudo_search_base = ou=sudoers,dc=domain,dc=com
id_provider = ldap
auth_provider = ldap
chpass_provider = ldap
ldap_uri = ldap://ldapserver.domain.com:389
ldap_id_use_start_tls = true
#ldap_tls_cacertdir = /etc/openldap/cacerts
#ldap_schema = rfc2307bis
#ldap_auth_disable_tls_never_use_in_production = true
#use_fully_qualified_names = True
#enumeration = False
debug_level = 9
[sssd]
config_file_version = 2
reconnection_retries = 3
sbus_timeout = 30
services = nss, pam
domains = ldap
[nss]
filter_groups = root
filter_users = root
reconnection_retries = 3
#entry_cache_timeout = 300
entry_cache_nowait_percentage = 75
[pam]
reconnection_retries = 3
offline_credentials_expiration = 2
offline_failed_login_attempts = 3
offline_failed_login_delay = 5
[autofs]
[root#ldap-test-client]$ cat /etc/openldap/ldap.conf /etc/ldap.conf /etc/ssh/ldap.conf
#TLS_CACERTDIR /etc/openldap/cacerts
#TLS_CACERTDIR /etc/openldap/certs
TLS_REQCERT never
TLS never
URI ldap://ldapserver.domain.com:389
BASE ou=People,dc=domain,dc=com
ssh and nsswitch configs,
[root#ldap-test-client]$ pwd
/etc/ssh
[root#ldap-test-client]$ cat sshd_config-edit
Port 22
Protocol 2
SyslogFacility AUTHPRIV
LogLevel INFO
LoginGraceTime 15
PermitRootLogin no
MaxAuthTries 6
HostbasedAuthentication no
IgnoreRhosts yes
PermitEmptyPasswords no
PasswordAuthentication yes
ChallengeResponseAuthentication no
GSSAPIAuthentication yes
GSSAPICleanupCredentials yes
UsePAM yes
AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
AcceptEnv LC_IDENTIFICATION LC_ALL LANGUAGE
AcceptEnv XMODIFIERS
Ciphers aes256-ctr,aes192-ctr,aes128-ctr
MACs hmac-sha2-512,hmac-sha2-256
X11Forwarding no
PermitUserEnvironment no
ClientAliveInterval 1800
ClientAliveCountMax 1
Subsystem sftp /usr/libexec/openssh/sftp-server
[root#ldap-test-client]$ cat ssh_config
Host *
GSSAPIAuthentication yes
SendEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
SendEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
SendEnv LC_IDENTIFICATION LC_ALL LANGUAGE
SendEnv XMODIFIERS
[root#ldap-test-client]$ cat /etc/nsswitch.conf
passwd: files sss
shadow: files sss
group: files sss
hosts: files dns
bootparams: nisplus [NOTFOUND=return] files
ethers: files sss
netmasks: files sss
networks: files sss
protocols: files sss
rpc: files sss
services: files sss
netgroup: files sss
publickey: nisplus
automount: files sss
aliases: files nisplus
sudoers: files sss
sudoers: files sss
[root#ldap-test-client]$ telnet ldapserver.domain.com 389
Trying 192.168.0.165...
Connected to 192.168.0.165.
Escape character is '^]'.
pam.d system-auth and password-auth configs
[root#ldap-test-client]$ pwd
/etc/pam.d
[root#ldap-test-client]$ cat system-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth required pam_env.so
auth required pam_faildelay.so delay=2000000
auth sufficient pam_fprintd.so
auth [default=1 ignore=ignore success=ok] pam_succeed_if.so uid >= 1000 quiet
auth [default=1 ignore=ignore success=ok] pam_localuser.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 1000 quiet_success
auth sufficient pam_sss.so forward_pass
auth required pam_deny.so
account required pam_unix.so
account sufficient pam_localuser.so
account sufficient pam_succeed_if.so uid < 1000 quiet
account [default=bad success=ok user_unknown=ignore] pam_sss.so
account required pam_permit.so
password requisite pam_pwquality.so try_first_pass retry=3 type=
password sufficient pam_unix.so sha512 shadow nullok try_first_pass use_authtok
password sufficient pam_sss.so use_authtok
password required pam_deny.so
session optional pam_keyinit.so revoke
session required pam_limits.so
-session optional pam_systemd.so
session optional pam_mkhomedir.so umask=0077
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session required pam_unix.so
session optional pam_sss.so
[root#ldap-test-client]$ cat password-auth
#%PAM-1.0
# This file is auto-generated.
# User changes will be destroyed the next time authconfig is run.
auth required pam_env.so
auth required pam_faildelay.so delay=2000000
auth [default=1 ignore=ignore success=ok] pam_succeed_if.so uid >= 1000 quiet
auth [default=1 ignore=ignore success=ok] pam_localuser.so
auth sufficient pam_unix.so nullok try_first_pass
auth requisite pam_succeed_if.so uid >= 1000 quiet_success
auth sufficient pam_sss.so forward_pass
auth required pam_deny.so
account required pam_unix.so
account sufficient pam_localuser.so
account sufficient pam_succeed_if.so uid < 1000 quiet
account [default=bad success=ok user_unknown=ignore] pam_sss.so
account required pam_permit.so
password requisite pam_pwquality.so try_first_pass retry=3 type=
password sufficient pam_unix.so sha512 shadow nullok try_first_pass use_authtok
password sufficient pam_sss.so use_authtok
password required pam_deny.so
session optional pam_keyinit.so revoke
session required pam_limits.so
-session optional pam_systemd.so
session optional pam_mkhomedir.so umask=0077
session [success=1 default=ignore] pam_succeed_if.so service in crond quiet use_uid
session required pam_unix.so
session optional pam_sss.so
sssd and audit service logs
[root#ldap-test-client]$ tail -f /var/log/sssd/*
==> /var/log/sssd/ldap_child.log <==
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #2]: New request. Flags [0x0001].
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #2]: Receiving request data.
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #2]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #2]: Request removed.
(Mon Aug 6 15:34:41 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd.log <==
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:41 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
==> /var/log/sssd/sssd_pam.log <==
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): dbus conn: 0x56174ff78030
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): Dispatching.
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.dataprovider.getAccountInfo on path /org/freedesktop/sssd/dataprovider
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #3]: New request. Flags [0x0001].
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #3]: Receiving request data.
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #3]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #3]: Request removed.
(Mon Aug 6 15:34:48 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:48 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): dbus conn: 0x56174ff78030
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): Dispatching.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.dataprovider.getAccountInfo on path /org/freedesktop/sssd/dataprovider
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #4]: New request. Flags [0x0001].
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #4]: Receiving request data.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #4]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #4]: Request removed.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:49 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): dbus conn: 0x56174ff78030
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): Dispatching.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.dataprovider.getAccountInfo on path /org/freedesktop/sssd/dataprovider
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #5]: New request. Flags [0x0001].
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #5]: Receiving request data.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #5]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #5]: Request removed.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:49 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): dbus conn: 0x56174ff78030
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): Dispatching.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.dataprovider.getAccountInfo on path /org/freedesktop/sssd/dataprovider
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #6]: New request. Flags [0x0001].
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #6]: Receiving request data.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #6]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #6]: Request removed.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:49 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
==> /var/log/sssd/sssd_LDAP.log <==
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): dbus conn: 0x56174ff78030
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_dispatch] (0x4000): Dispatching.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_message_handler] (0x2000): Received SBUS method org.freedesktop.sssd.dataprovider.getAccountInfo on path /org/freedesktop/sssd/dataprovider
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sbus_get_sender_id_send] (0x2000): Not a sysbus message, quit
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_get_account_info_handler] (0x0200): Got request for [0x1][BE_REQ_USER][name=testuser#ldap]
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): DP Request [Account #7]: New request. Flags [0x0001].
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_attach_req] (0x0400): Number of active DP request: 1
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [sss_domain_get_state] (0x1000): Domain LDAP is Active
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [_dp_req_recv] (0x0400): DP Request [Account #7]: Receiving request data.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_reply_gen_error] (0x0080): DP Request [Account #7]: Finished. Backend is currently offline.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_table_value_destructor] (0x0400): Removing [0:1:0x0001:1::LDAP:name=testuser#ldap] from reply table
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): DP Request [Account #7]: Request removed.
(Mon Aug 6 15:34:49 2018) [sssd[be[LDAP]]] [dp_req_destructor] (0x0400): Number of active DP request: 0
==> /var/log/sssd/sssd_nss.log <==
(Mon Aug 6 15:34:49 2018) [sssd[nss]] [sss_dp_get_reply] (0x0010): The Data Provider returned an error [org.freedesktop.sssd.Error.DataProvider.Offline]
I'm trying ssh connection with "ssh testuser # ldap-test-client" command. The ssh request comes in the audit log of the server.
[root#ldap-test-client]$ tail -f audit.log
type=CRYPTO_KEY_USER msg=audit(1533557907.241:533): pid=2043 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:13:c9:73:32:4e:40:e6:23:fa:01:94:01:1d:06:75:ee:40:cb:36:a8:4a:b2:b8:15:5c:d1:a5:bb:eb:80:d8:03 direction=? spid=2043 suid=0 exe="/usr/sbin/sshd" hostname=? addr=? terminal=? res=success'
type=CRYPTO_KEY_USER msg=audit(1533557907.241:534): pid=2043 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:39:21:b3:e2:23:1d:49:5a:d9:b9:b2:c5:6a:24:01:df:45:89:fb:91:c5:19:61:43:ff:71:29:6f:1e:a7:32:fd direction=? spid=2043 suid=0 exe="/usr/sbin/sshd" hostname=? addr=? terminal=? res=success'
type=CRYPTO_KEY_USER msg=audit(1533557907.241:535): pid=2043 uid=0 auid=4294967295 ses=4294967295 msg='op=destroy kind=server fp=SHA256:4a:94:74:27:67:91:8a:07:15:8f:d3:af:f7:2c:92:b4:25:4a:bd:5b:ae:78:82:5a:71:01:03:2c:0a:15:e2:c6 direction=? spid=2043 suid=0 exe="/usr/sbin/sshd" hostname=? addr=? terminal=? res=success'
type=CRYPTO_SESSION msg=audit(1533557907.305:536): pid=2042 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=chacha20-poly1305#openssh.com ksize=512 mac=<implicit> pfs=curve25519-sha256 spid=2043 suid=74 rport=53218 laddr=192.168.0.220 lport=22 exe="/usr/sbin/sshd" hostname=? addr=10.212.134.201 terminal=? res=success'
type=CRYPTO_SESSION msg=audit(1533557907.305:537): pid=2042 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=chacha20-poly1305#openssh.com ksize=512 mac=<implicit> pfs=curve25519-sha256 spid=2043 suid=74 rport=53218 laddr=192.168.0.220 lport=22 exe="/usr/sbin/sshd" hostname=? addr=10.212.134.201 terminal=? res=success'
**The following lines appear after entering the password.**
type=USER_AUTH msg=audit(1533557924.276:538): pid=2042 uid=0 auid=4294967295 ses=4294967295 msg='op=PAM:authentication grantors=? acct="?" exe="/usr/sbin/sshd" hostname=10.212.134.201 addr=10.212.134.201 terminal=ssh res=failed'
type=USER_AUTH msg=audit(1533557926.436:539): pid=2042 uid=0 auid=4294967295 ses=4294967295 msg='op=password acct="(unknown)" exe="/usr/sbin/sshd" hostname=? addr=10.212.134.201 terminal=ssh res=failed'
My ldap connection test;
[root#ldap-test-client]$ id testuser
uid=11000(testuser) gid=10010(sysmaster) groups=10010(sysmaster)
[root#ldap-test-client]$ ldapsearch -x -H ldap://ldapserver.domain.com:389 -b uid=testuser,ou=People,dc=domain,dc=com -s base -W
Enter LDAP Password:
# extended LDIF
#
# LDAPv3
# base <uid=testuser,ou=People,dc=domain,dc=com> with scope baseObject
# filter: (objectclass=*)
# requesting: ALL
#
# testuser, People, domain.com
dn: uid=testuser,ou=People,dc=domain,dc=com
givenName: Test
sn: User
loginShell: /bin/bash
gidNumber: 10010
uidNumber: 11000
mail: testuser#domain.com
objectClass: top
objectClass: person
objectClass: organizationalPerson
objectClass: inetorgperson
objectClass: posixAccount
objectClass: ldappublickey
objectClass: hostobject
objectClass: sudoers
objectClass: sudorole
uid: testuser
cn: Test User
homeDirectory: /home/testuser
host: ALL
sudoHost: ALL
sudoCommand: ALL
sudoOption: !aunthenticate
# search result
search: 2
result: 0 Success
# numResponses: 2
# numEntries: 1
I have a kinesis stream which is being continuously written with putRecord. In the consumer I consume using processRecords of KCL. This process records gets called whenever there is a record in the stream.I need this process records to be excuted every X hour.
Here are the things that I tried.
kinesisClientLibConfiguration = new KinesisClientLibConfiguration(applicationName, kinesisStreamName,
credsProvider, workerId).withInitialPositionInStream(initialPositionInStream)
.withCallProcessRecordsEvenForEmptyRecordList(true)
.withIdleTimeBetweenReadsInMillis(3600000) //1 hr in millis
.withKinesisEndpoint(kinesisEndpoint);
This does'nt seem to be working. It throws the below exception
[INFO] 2018-02-08T18:41:24.124 com.amazonaws.services.kinesis.clientlibrary.lib.worker.ProcessTask getRecordsResult ShardId shardId-000000000003: getRecords threw ExpiredIteratorException - restarting after greatest seqNum passed to customer
com.amazonaws.services.kinesis.model.ExpiredIteratorException: Iterator expired. The iterator was created at time Thu Feb 08 13:06:04 UTC 2018 while right now it is Thu Feb 08 13:11:23 UTC 2018 which is further in the future than the tolerated delay of 300000 milliseconds. (Service: AmazonKinesis; Status Code: 400; Error Code: ExpiredIteratorException; Request ID: d72ba81b-9a14-cf1d-85dd-e6a01179f91c)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.handleErrorResponse(AmazonHttpClient.java:1639)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.executeOneRequest(AmazonHttpClient.java:1304)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.executeHelper(AmazonHttpClient.java:1056)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.doExecute(AmazonHttpClient.java:743)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.executeWithTimer(AmazonHttpClient.java:717)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.execute(AmazonHttpClient.java:699)
at com.amazonaws.http.AmazonHttpClient$RequestExecutor.access$500(AmazonHttpClient.java:667)
at com.amazonaws.http.AmazonHttpClient$RequestExecutionBuilderImpl.execute(AmazonHttpClient.java:649)
at com.amazonaws.http.AmazonHttpClient.execute(AmazonHttpClient.java:513)
at com.amazonaws.services.kinesis.AmazonKinesisClient.doInvoke(AmazonKinesisClient.java:2276)
at com.amazonaws.services.kinesis.AmazonKinesisClient.invoke(AmazonKinesisClient.java:2252)
at com.amazonaws.services.kinesis.AmazonKinesisClient.executeGetRecords(AmazonKinesisClient.java:1062)
at com.amazonaws.services.kinesis.AmazonKinesisClient.getRecords(AmazonKinesisClient.java:1038)
at com.amazonaws.services.kinesis.clientlibrary.proxies.KinesisProxy.get(KinesisProxy.java:158)
at com.amazonaws.services.kinesis.clientlibrary.proxies.MetricsCollectingKinesisProxyDecorator.get(MetricsCollectingKinesisProxyDecorator.java:74)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.KinesisDataFetcher.getRecords(KinesisDataFetcher.java:74)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.SynchronousGetRecordsRetrievalStrategy.getRecords(SynchronousGetRecordsRetrievalStrategy.java:31)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.BlockingGetRecordsCache.getNextResult(BlockingGetRecordsCache.java:50)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.ProcessTask.getRecordsResultAndRecordMillisBehindLatest(ProcessTask.java:377)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.ProcessTask.getRecordsResult(ProcessTask.java:342)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.ProcessTask.call(ProcessTask.java:159)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.MetricsCollectingTaskDecorator.call(MetricsCollectingTaskDecorator.java:49)
at com.amazonaws.services.kinesis.clientlibrary.lib.worker.MetricsCollectingTaskDecorator.call(MetricsCollectingTaskDecorator.java:24)
at java.util.concurrent.FutureTask.run(Unknown Source)
at java.util.concurrent.ThreadPoolExecutor.runWorker(Unknown Source)
at java.util.concurrent.ThreadPoolExecutor$Worker.run(Unknown Source)
at java.lang.Thread.run(Unknown Source)
Can someone please let me know if there is a work around for achieving this?
Thanks
I have a integrated application via webconnector that is working perfectly for about 20 customers. It adds customers, vendors and updates AP and AR and receives payments without a hitch for all of my customers.
My application also requests AP and AR agings from QB and it works for all except one customer. I've been able to copy their file and recreate the problem in the lab. I've included the XML request and the quickbooks log. Any help, advice, clues, etc would be welcomed.
Request:
<?xml version="1.0" encoding="utf-8"?>
<?qbxml version="5.0"?>
<QBXML>
<QBXMLMsgsRq onError="stopOnError">
<AgingReportQueryRq>
<!-- AgingReportType may have one of the following values: APAgingDetail, APAgingSummary, ARAgingDetail, ARAgingSummary, CollectionsReport -->
<AgingReportType >APAgingDetail</AgingReportType>
<ReportPeriod>
<FromReportDate >2013-02-01</FromReportDate>
<ToReportDate >2013-02-28</ToReportDate>
</ReportPeriod>
<IncludeColumn >Name</IncludeColumn>
<IncludeColumn>RefNumber</IncludeColumn>
<IncludeColumn>Date</IncludeColumn>
<IncludeColumn>OpenBalance</IncludeColumn>
<IncludeColumn>Memo</IncludeColumn>
<IncludeColumn>Account</IncludeColumn>
<IncludeColumn>NameAccountNumber</IncludeColumn>
<IncludeColumn>TxnID</IncludeColumn>
</AgingReportQueryRq>
</QBXMLMsgsRq>
</QBXML>
The log is :
Log file initialized at Wednesday, February 27, 2013 - 12:15 AM UTC
Timestamp format used: YYYYMMDD.HH:MM:SS UTC
QBWebConnector 2.0 has been initialized with its logging status to level = VERBOSE.
Please restart QBWebConnector for any change in log level to take effect. Use file menu to clear log.
20130227.00:15:06 UTC : QBWebConnector.SOAPWebService.do_receiveResponseXML() : hresult=""
20130227.00:15:06 UTC : QBWebConnector.SOAPWebService.do_receiveResponseXML() : message=""
20130227.00:15:07 UTC : QBWebConnector.SOAPWebService.do_receiveResponseXML() : QBWC1042: ReceiveResponseXML failed
Error message: The request failed with HTTP status 404: Not Found.
More info:
StackTrace = at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
at QBWebConnector.localhost.WCWebServiceDoc.receiveResponseXML(String ticket, String response, String hresult, String message)
at QBWebConnector.localhost.WCWebService.receiveResponseXML(String ticket, String response, String hresult, String message)
at QBWebConnector.SOAPWebService.receiveResponseXML(String wcTicket, String response, String hresult, String message)
at QBWebConnector.WebService.do_receiveResponseXML(String wcTicket, String response, String hresult, String message, Boolean& success, Boolean& timeout)
Source = System.Web.Services
20130227.00:15:07 UTC : QBWebConnector.CompanyFileLock.Send_CompanyQueryRqXML() : XML dump follows: -
<?xml version="1.0"?><?qbxml version="10.0"?><QBXML><QBXMLMsgsRq onError="stopOnError"><CompanyQueryRq requestID="1"><OwnerID>{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}</OwnerID></CompanyQueryRq></QBXMLMsgsRq></QBXML>
20130227.00:15:07 UTC : QBWebConnector.CompanyFileLock.Send_CompanyQueryRqXML() : XML dump follows: -
<?xml version="1.0" ?>
<QBXML>
<QBXMLMsgsRs>
<CompanyQueryRs requestID="1" statusCode="0" statusSeverity="Info" statusMessage="Status OK">
<CompanyRet>
<IsSampleCompany>false</IsSampleCompany>
<CompanyName>DFW JAVV BUS INC</CompanyName>
<LegalCompanyName>DFW JAVV BUS INC</LegalCompanyName>
<Address>
<Addr1>105 101TH Street #501</Addr1>
<City>Little Prairie</City>
<State>CA</State>
<PostalCode>95050</PostalCode>
<Country>US</Country>
</Address>
<AddressBlock>
<Addr1>105 108TH Street #501</Addr1>
<Addr2>Little Prairie, CS 95050</Addr2>
</AddressBlock>
<LegalAddress>
<Addr1>1010 A N Davis Dr</Addr1>
<City>Lomita</City>
<State>CA</State>
<PostalCode>96012</PostalCode>
<Country>US</Country>
</LegalAddress>
<Phone>972-522-1500</Phone>
<FirstMonthFiscalYear>January</FirstMonthFiscalYear>
<FirstMonthIncomeTaxYear>January</FirstMonthIncomeTaxYear>
<CompanyType>other</CompanyType>
<EIN>20-3726264</EIN>
<TaxForm>Form1120S</TaxForm>
<SubscribedServices>
<Service>
<Name>QuickBooks Online Banking</Name>
<Domain>banking.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Online Billing</Name>
<Domain>billing.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Online Billing Level 1 Service</Name>
<Domain>qbob1.qbn</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Online Billing Level 2 Service</Name>
<Domain>qbob2.qbn</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Online Billing Payment Service</Name>
<Domain>qbobpay.qbn</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Bill Payment</Name>
<Domain>billpay.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Online Billing Paper Mailing Service</Name>
<Domain>qbobpaper.qbn</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Payroll Service</Name>
<Domain>payroll.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Basic Payroll Service</Name>
<Domain>payrollbsc.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Basic Disk Payroll Service</Name>
<Domain>payrollbscdisk.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Deluxe Payroll Service</Name>
<Domain>payrolldlx.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>QuickBooks Premier Payroll Service</Name>
<Domain>payrollprm.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>Basic Plus Federal</Name>
<Domain>basic_plus_fed.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>Basic Plus Federal and State</Name>
<Domain>basic_plus_fed_state.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>Basic Plus Direct Deposit</Name>
<Domain>basic_plus_dd.qb</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
<Service>
<Name>Merchant Account Service</Name>
<Domain>mas.qbn</Domain>
<ServiceStatus>Never</ServiceStatus>
</Service>
</SubscribedServices>
<AccountantCopy>
<AccountantCopyExists>false</AccountantCopyExists>
</AccountantCopy>
<DataExtRet>
<OwnerID>{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}</OwnerID>
<DataExtName>AppLock</DataExtName>
<DataExtType>STR255TYPE</DataExtType>
<DataExtValue>LOCKED:QAXP1JV_VM:634975201418013380</DataExtValue>
</DataExtRet>
<DataExtRet>
<OwnerID>{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}</OwnerID>
<DataExtName>FileID</DataExtName>
<DataExtType>STR255TYPE</DataExtType>
<DataExtValue>{714E8016-F6D4-4530-AFC3-995A34F3F7CE}</DataExtValue>
</DataExtRet>
</CompanyRet>
</CompanyQueryRs>
</QBXMLMsgsRs>
</QBXML>
20130227.00:15:07 UTC : QBWebConnector.CompanyFileLock.getLock() : Got Lock = LOCKED:QAXP1JV_VM:634975201418013380
20130227.00:15:07 UTC : QBWebConnector.CompanyFileLock.Send_DataExtModRqXML() : XML dump follows: -
<?xml version="1.0"?><?qbxml version="10.0"?><QBXML><QBXMLMsgsRq onError="stopOnError"><DataExtModRq requestID="1"><DataExtMod><OwnerID>{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}</OwnerID><DataExtName>AppLock</DataExtName><OtherDataExtType>Company</OtherDataExtType><DataExtValue>UNLOCKED:QAXP1JV_VM</DataExtValue></DataExtMod></DataExtModRq></QBXMLMsgsRq></QBXML>
20130227.00:15:08 UTC : QBWebConnector.CompanyFileLock.Send_DataExtModRqXML() : XML dump follows: -
<?xml version="1.0" ?>
<QBXML>
<QBXMLMsgsRs>
<DataExtModRs requestID="1" statusCode="0" statusSeverity="Info" statusMessage="Status OK">
<DataExtRet>
<OwnerID>{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}</OwnerID>
<DataExtName>AppLock</DataExtName>
<DataExtType>STR255TYPE</DataExtType>
<DataExtValue>UNLOCKED:QAXP1JV_VM</DataExtValue>
</DataExtRet>
</DataExtModRs>
</QBXMLMsgsRs>
</QBXML>
20130227.00:15:08 UTC : QBWebConnector.CompanyFileLock.unsetLock() : Company file has been unlocked for ownerID = <{ADB06C95-6FC7-4D8D-AC30-6A28E24AAB22}>
20130227.00:15:08 UTC : QBWebConnector.SOAPWebService.update() : Company file has been unlocked.
20130227.00:15:08 UTC : QBWebConnector.SOAPWebService.update() : Ending session to QuickBooks.
20130227.00:15:08 UTC : QBWebConnector.SOAPWebService.DisconnectFromQB() : Session ended and connection closed
20130227.00:15:08 UTC : QBWebConnector.SOAPWebService.do_closeConnection() : *** Calling closeConnection() with following parameter:<wcTicket="03dfdb40-3588-4d1b-b51f-000b3d2de071">
20130227.00:15:10 UTC : QBWebConnector.SOAPWebService.do_closeConnection() : Received from closeConnection() following parameter:<ccResponse="OK">
20130227.00:15:10 UTC : QBWebConnector.SOAPWebService.do_closeConnection() : CloseConnection called to application.
20130227.00:15:10 UTC : QBWebConnector.SOAPWebService.do_closeConnection() : Response received from application = OK
20130227.00:15:10 UTC : QBWebConnector.RegistryManager.setUpdateLock() : HKEY_CURRENT_USER\Software\Intuit\QBWebConnector\UpdateLock has been set to False
20130227.00:15:10 UTC : QBWebConnector.RegistryManager.setUpdateLock() : ********************* Update session unlocked *********************
20130227.00:15:10 UTC : QBWebConnector.SOAPWebService.update() : update completed.
20130227.00:15:10 UTC : QBWebConnector.WebServiceManager.DoUpdateSelected() : Update for application = 'jvQBWebSyncApplication' has COMPLETED
20130227.00:15:10 UTC : QBWebConnector.WebServiceManager.DoUpdateSelected() : Update session has ended.
Why is your web server returning a 404 Not Found error?
20130227.00:15:07 UTC : QBWebConnector.SOAPWebService.do_receiveResponseXML() : QBWC1042:
ReceiveResponseXML failed Error message: The request failed with HTTP
status 404: Not Found. More info:
Also, you should post an entire log - this only shows the response, where's the request?
i have a servlet which calls a rest web service using jersey client framework, here's the client code -
response.setContentType("application/json");
String adCategoryId = request.getParameter("adCategoryId");
String requirement = request.getParameter("requirement");
Client client = Client.create();
WebResource wr = client.resource("http://localhost:8080/com.pandora.services/service");
String adResult = wr.path("search-ad").path(requirement).path(adCategoryId).get(String.class);
the code on the service side is this -
#Path("/service")
public class Service {
#GET
#Path("/search-ad/{need}/{query}")
public String searchAd(#PathParam("need") String requirement,#PathParam("query") String id)
{
System.out.println("inside services");
String adResult = "";
AdServiceProvider ad = new AdServiceProviderImpl();
List<AdBean> adBean = ad.getAdById(Long.parseLong(id.trim()),requirement);
adResult = gson.toJson(adBean);
System.out.println(adResult);
return adResult;
}
}
however when i make the call.. i get the following error - Updated
Servlet.service() for servlet Resteasy threw exception
java.lang.NullPointerException
at org.jboss.resteasy.plugins.server.servlet.HttpServletInputMessage.(HttpServletInputMessage.java:60)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.createHttpRequest(HttpServletDispatcher.java:71)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.createResteasyHttpRequest(HttpServletDispatcher.java:60)
at org.jboss.resteasy.plugins.server.servlet.ServletContainerDispatcher.service(ServletContainerDispatcher.java:197)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:55)
at org.jboss.resteasy.plugins.server.servlet.HttpServletDispatcher.service(HttpServletDispatcher.java:50)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:857)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489)
at java.lang.Thread.run(Unknown Source)
Jan 14, 2011 9:58:05 PM org.apache.catalina.core.StandardWrapperValve invoke
SEVERE: Servlet.service() for servlet test threw exception
com.sun.jersey.api.client.UniformInterfaceException: GET http://localhost:8080/com.pandora.services/service/hello returned a response status of 500
at com.sun.jersey.api.client.WebResource.handle(WebResource.java:565)
at com.sun.jersey.api.client.WebResource.get(WebResource.java:182)
at com.pandora.client.servlets.test.doPost(test.java:45)
at com.pandora.client.servlets.test.doGet(test.java:33)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:707)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:820)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:191)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:127)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:298)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:857)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:588)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:489)
at java.lang.Thread.run(Unknown Source)
Thanks...
Just two days ago the was a similar question regarding Apache Wink.
The root cause of your problem: media type in your request is incorrect. It should be */* and not just *. The exception is very clear about that.
In the latest version of Wink, it became more forgivable about the incorrect formats of the media type. I don't know what about Jersey. But IMO it's better to fix the root problem.
My guess that the incorrect header in your case it "Accept". You can verify it using any HTTP Sniffer (e.g. Fiddler). So if you set the correct Accept header on your request, it should fix the problem.