?
Solved

working of LTPA

Posted on 2008-10-12
5
Medium Priority
?
9,864 Views
Last Modified: 2013-12-11
I ran into issue where Websphere dmgr gave the error message LTPA token expired and resync failed message appeared  in the nodeagent log

ADMS0005E: Unable to generate synchronization request:
javax.management.JMRuntimeException: ADMN0022E: Access denied
for the getRepositoryEpoch operation on ConfigRepository MBean
due to insufficient or empty credentials.

is the issue because of LTPA token expire? what needs to be done to solve the issue

can someone please explain me how does LTPA token concept and why expiry of the token results in the stopping of the appservers and nodeagent.
0
Comment
Question by:chinky2377
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 41

Accepted Solution

by:
HonorGod earned 100 total points
ID: 22705512
LTPA = Lightweight Third-Party Authentication

http://en.wikipedia.org/wiki/IBM_Lightweight_Third-Party_Authentication

Apparently, a token was created that had an expiration date, and that
date/time has come and gone.  Therefore, the token is no longer valid.

This page should help you correct the issue:

http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.base.doc/info/aes/ae/usec_authmechandexpire.html
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22705534
The AppServers (and nodeagents, which are also AppServers) stop because
authentication can no longer be performed, and the AppServers can't "trust"
any application that uses the referenced "token"
0
 

Expert Comment

by:siddharth1747
ID: 22780130
Running into same issue between nodeagent and dmgr, re-generated ltpa tokens for dmgr, did a manual resync of nodeagent (successful output) and stopped/re-started the dmgr and nodeagent, still complaining of a lack of trust between nodeagent and dmgr running on same physical host on AIX.....Please help....
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22780484
Are you seeing any errors in the logs (e.g., certification expired)?
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22827977
I'm sorry you didn't like the answer, thanks for the points though.

Good luck & have a great day.
0

Featured Post

Flexible connectivity for any environment

The KE6900 series can extend and deploy computers with high definition displays across multiple stations in a variety of applications that suit any environment. Expand computer use to stations across multiple rooms with dynamic access.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Most of the developers using Tomcat find it easy to configure the datasource in Server.xml and use the JNDI name in the code to get the connection.  So the default connection pool using DBCP (or any other framework) is made available and the life go…
There are numerous questions about how to setup an IBM HTTP Server to be administered from WebSphere Application Server administrative console. I do hope this article will wrap things up and become a reference for this task. You need three things…
Visualize your data even better in Access queries. Given a date and a value, this lesson shows how to compare that value with the previous value, calculate the difference, and display a circle if the value is the same, an up triangle if it increased…
In this video, Percona Director of Solution Engineering Jon Tobin discusses the function and features of Percona Server for MongoDB. How Percona can help Percona can help you determine if Percona Server for MongoDB is the right solution for …
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question