Hi ,
3) Edit "system-jazn-data.xml" file, add the following
grant.
I faced the following issue while creating the MDS connection in BPM while
following the BPM cook book.
Test Failed: BPM-80102: Error while creating the security service. Cause: access denied (oracle.security.jps.service.policystore.PolicyStoreAccessPermission Context:APPLICATION Context Name:OracleBPMComposerRolesApp Actions:getApplicationPolicy)
Solution:
When I Checked the BPM-MSD log it says that
"oracle.bpm.pml.security.exception.PmlSecurityException: BPM-80102: Error
while creating the security service."
Steps to resolve:
1) Go to the Middleware Home location, for my case it’s under Following
location
2) C:\Oracle\Middleware-->user_projects-->domain-->SOAdomain(Domain
name specific to your Domain)-->config-->fmwconfig
2) Open the system-jazn-data.xml file under fmwconfig folder
<grant>
<grantee>
<codesource>
<url>file:${soa.oracle.home}/soa/modules/oracle.bpm.runtime_11.1.1/oracle.bpm.pml.security.jar</url>
</codesource>
</grantee>
<permissions>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=*</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=OracleBPMProcessRolesApp</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=OracleBPMComposerRolesApp</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.JpsPermission</class>
<name>VerificationService.createInternalWorkflowContext</name>
</permission>
<permission>
<class>oracle.security.jps.service.credstore.CredentialAccessPermission</class>
<name>credstoressp.credstore.WF-ADMIN-USER.WF-ADMIN-CREDENTIAL</name>
<actions>read,write</actions>
</permission>
</permissions>
</grant>
<grantee>
<codesource>
<url>file:${soa.oracle.home}/soa/modules/oracle.bpm.runtime_11.1.1/oracle.bpm.pml.security.jar</url>
</codesource>
</grantee>
<permissions>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=*</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=OracleBPMProcessRolesApp</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.service.policystore.PolicyStoreAccessPermission</class>
<name>context=APPLICATION, name=OracleBPMComposerRolesApp</name>
<actions>createAppRole,removeAppRole,addPrincipalToAppRole,removePrincipalFromAppRole,grant,revoke,getApplicationPolicy</actions>
</permission>
<permission>
<class>oracle.security.jps.JpsPermission</class>
<name>VerificationService.createInternalWorkflowContext</name>
</permission>
<permission>
<class>oracle.security.jps.service.credstore.CredentialAccessPermission</class>
<name>credstoressp.credstore.WF-ADMIN-USER.WF-ADMIN-CREDENTIAL</name>
<actions>read,write</actions>
</permission>
</permissions>
</grant>
4)Restart the server it will solve your issue
Fantastic article ! You havemade some very astute statements and I appreciate the the effort you have put into your writing. Its clear that you know what you are writing about. I am excited to read more of your sites content.
ReplyDeleteLatest jobs