Date Created: Tue 10-Feb-2009

Related Document Categories:


    Problem:

    SECJ0336E: Authentication failed for user wasadmin because of the following exception com.ibm.ws.security.registry.unix.UnixRegistryException: permission denied: must be run as 'root'


    Solution:
    Global security has been turned on and the application server is not running as root. In Liunx, to use the operating system as a repository for users, the server has to run as root, which can be a problem for secure environments where applications are not allowed to run with root privilege. Best to use a federated LDAP repository instead of the local OS!


    Stack trace.....



    1/28/09 17:16:27:861 GMT] 0000001f UnixRegistryI E SECJ0336E: Authentication failed for user wasadmin because of the following exception com.ibm.ws.security.registry.unix.UnixRegistryException: permission denied: must be run as 'root'
    at com.ibm.ws.security.registry.unix.UnixRegistryImpl.ntv_basicAuthenticate(Native Method)
    at com.ibm.ws.security.registry.unix.UnixRegistryImpl.checkPassword(UnixRegistryImpl.java:139)
    at com.ibm.ws.security.registry.UserRegistryImpl.checkPassword(UserRegistryImpl.java:337)
    at com.ibm.ws.security.ltpa.LTPAServerObject.authenticate(LTPAServerObject.java:915)
    at com.ibm.ws.security.server.lm.ltpaLoginModule.login(ltpaLoginModule.java:643)
    at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
    at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAccessorImpl.java:45)
    at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingMethodAccessorImpl.java:37)
    at java.lang.reflect.Method.invoke(Method.java:599)
    at javax.security.auth.login.LoginContext.invoke(LoginContext.java:795)
    at javax.security.auth.login.LoginContext.access$000(LoginContext.java:209)
    at javax.security.auth.login.LoginContext$4.run(LoginContext.java:709)
    at java.security.AccessController.doPrivileged(AccessController.java:251)
    at javax.security.auth.login.LoginContext.invokePriv(LoginContext.java:706)
    at javax.security.auth.login.LoginContext.login(LoginContext.java:603)
    at com.ibm.ws.security.auth.JaasLoginHelper.jaas_login(JaasLoginHelper.java:477)
    at com.ibm.ws.security.auth.ContextManagerImpl.login(ContextManagerImpl.java:3752)
    at com.ibm.ws.security.auth.ContextManagerImpl.login(ContextManagerImpl.java:3453)
    at com.ibm.ws.security.auth.ContextManagerImpl.login(ContextManagerImpl.java:3449)
    at com.ibm.ws.security.web.FormLoginExtensionProcessor$1.run(FormLoginExtensionProcessor.java:479)
    at com.ibm.ws.security.util.AccessController.doPrivileged(AccessController.java:118)
    at com.ibm.ws.security.web.FormLoginExtensionProcessor.formLogin(FormLoginExtensionProcessor.java:487)
    at com.ibm.ws.security.web.FormLoginExtensionProcessor.handleRequest(FormLoginExtensionProcessor.java:229)
    at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:121)
    at com.ibm.ws.console.core.servlet.WSCUrlFilter.doFilter(WSCUrlFilter.java:141)
    at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:188)
    at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:116)
    at com.ibm.ws.webcontainer.filter.WebAppFilterChain._doFilter(WebAppFilterChain.java:77)
    at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:852)
    at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:917)
    at com.ibm.ws.webcontainer.webapp.WebApp.invokeFilters(WebApp.java:3681)
    at com.ibm.ws.webcontainer.webapp.WebApp.handleRequest(WebApp.java:3576)
    at com.ibm.ws.webcontainer.webapp.WebGroup.handleRequest(WebGroup.java:274)
    at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:926)
    at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1562)
    at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:177)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:455)
    at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewInformation(HttpInboundLink.java:384)
    at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:83)
    at com.ibm.ws.ssl.channel.impl.SSLReadServiceContext$SSLReadCompletedCallback.complete(SSLReadServiceContext.java:1772)
    at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
    at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
    at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
    at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
    at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
    at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
    at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
    at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1527)

Middleware Mentor - Steven Charles Robinson

About Me

Steve Robinson has been working in IT for over 15 years and has provided solutions for many large-enterprise corporate companies across the world. Steve specialises in Java and Middleware consulting. Steve comes from both an administration and development background.

Before moving to JEE, Steve was an accomplished developer and consultant for both IBM Lotus Notes and Microsoft .NET Technologies.

Follow Steve as @stevencrobinson on twitter.

Read my books?

IBM WebSphere Application Server 8.0 Administration Guide

IBM WebSphere Application Server 8.0 Administration Guide

WebSphere Application Server 7.0 Administration Guide

WebSphere Application Server 7.0 Administration Guide

WebSphere Categories

Oracle WebLogic Categories

JBoss Categories

Other Categories