Solved

working of LTPA

Posted on 2008-10-12
5
9,857 Views
Last Modified: 2013-12-11
I ran into issue where Websphere dmgr gave the error message LTPA token expired and resync failed message appeared  in the nodeagent log

ADMS0005E: Unable to generate synchronization request:
javax.management.JMRuntimeException: ADMN0022E: Access denied
for the getRepositoryEpoch operation on ConfigRepository MBean
due to insufficient or empty credentials.

is the issue because of LTPA token expire? what needs to be done to solve the issue

can someone please explain me how does LTPA token concept and why expiry of the token results in the stopping of the appservers and nodeagent.
0
Comment
Question by:chinky2377
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 41

Accepted Solution

by:
HonorGod earned 50 total points
ID: 22705512
LTPA = Lightweight Third-Party Authentication

http://en.wikipedia.org/wiki/IBM_Lightweight_Third-Party_Authentication

Apparently, a token was created that had an expiration date, and that
date/time has come and gone.  Therefore, the token is no longer valid.

This page should help you correct the issue:

http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.base.doc/info/aes/ae/usec_authmechandexpire.html
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22705534
The AppServers (and nodeagents, which are also AppServers) stop because
authentication can no longer be performed, and the AppServers can't "trust"
any application that uses the referenced "token"
0
 

Expert Comment

by:siddharth1747
ID: 22780130
Running into same issue between nodeagent and dmgr, re-generated ltpa tokens for dmgr, did a manual resync of nodeagent (successful output) and stopped/re-started the dmgr and nodeagent, still complaining of a lack of trust between nodeagent and dmgr running on same physical host on AIX.....Please help....
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22780484
Are you seeing any errors in the logs (e.g., certification expired)?
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22827977
I'm sorry you didn't like the answer, thanks for the points though.

Good luck & have a great day.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Configure Web Service (server application) I. Configure security for Web Services methods First, we need to protect Session bean which implements the service: 1. Open EJB deployment descriptor (ejb-jar.xml) in the EJB project that contains you…
Verbose logging is used to diagnose garbage collector problems. By default, -verbose:gc output is written to either native_stderr.log or native_stdout.log.   It is also possible to redirect the logs to a user-specified file. This article will de…
This is a high-level webinar that covers the history of enterprise open source database use. It addresses both the advantages companies see in using open source database technologies, as well as the fears and reservations they might have. In this…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

728 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question