Solved

working of LTPA

Posted on 2008-10-12
5
9,848 Views
Last Modified: 2013-12-11
I ran into issue where Websphere dmgr gave the error message LTPA token expired and resync failed message appeared  in the nodeagent log

ADMS0005E: Unable to generate synchronization request:
javax.management.JMRuntimeException: ADMN0022E: Access denied
for the getRepositoryEpoch operation on ConfigRepository MBean
due to insufficient or empty credentials.

is the issue because of LTPA token expire? what needs to be done to solve the issue

can someone please explain me how does LTPA token concept and why expiry of the token results in the stopping of the appservers and nodeagent.
0
Comment
Question by:chinky2377
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
5 Comments
 
LVL 41

Accepted Solution

by:
HonorGod earned 50 total points
ID: 22705512
LTPA = Lightweight Third-Party Authentication

http://en.wikipedia.org/wiki/IBM_Lightweight_Third-Party_Authentication

Apparently, a token was created that had an expiration date, and that
date/time has come and gone.  Therefore, the token is no longer valid.

This page should help you correct the issue:

http://publib.boulder.ibm.com/infocenter/wasinfo/v6r1/index.jsp?topic=/com.ibm.websphere.base.doc/info/aes/ae/usec_authmechandexpire.html
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22705534
The AppServers (and nodeagents, which are also AppServers) stop because
authentication can no longer be performed, and the AppServers can't "trust"
any application that uses the referenced "token"
0
 

Expert Comment

by:siddharth1747
ID: 22780130
Running into same issue between nodeagent and dmgr, re-generated ltpa tokens for dmgr, did a manual resync of nodeagent (successful output) and stopped/re-started the dmgr and nodeagent, still complaining of a lack of trust between nodeagent and dmgr running on same physical host on AIX.....Please help....
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22780484
Are you seeing any errors in the logs (e.g., certification expired)?
0
 
LVL 41

Expert Comment

by:HonorGod
ID: 22827977
I'm sorry you didn't like the answer, thanks for the points though.

Good luck & have a great day.
0

Featured Post

Free Tool: IP Lookup

Get more info about an IP address or domain name, such as organization, abuse contacts and geolocation.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Verbose logging is used to diagnose garbage collector problems. By default, -verbose:gc output is written to either native_stderr.log or native_stdout.log.   It is also possible to redirect the logs to a user-specified file. This article will de…
This exercise is about for the following scenario: Dmgr and One node with 2 application server. Each application server contains it owns application. Application server name as follows server1 contains app1 server2 contains app1 Prereq…
With Secure Portal Encryption, the recipient is sent a link to their email address directing them to the email laundry delivery page. From there, the recipient will be required to enter a user name and password to enter the page. Once the recipient …
Finds all prime numbers in a range requested and places them in a public primes() array. I've demostrated a template size of 30 (2 * 3 * 5) but larger templates can be built such 210  (2 * 3 * 5 * 7) or 2310  (2 * 3 * 5 * 7 * 11). The larger templa…

726 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question