Symptom
- When a user accesses their User Profile in Portal Personalization, no information is displayed and the message 'An error occurred; contact your system administrator' is visible.
- An error such as the following is written to the server trace when the issue is reproduced:
Error checking permission
[EXCEPTION]
com.sap.security.core.wd.exception.UmeUiSecurityException: com.sap.engine.services.jmx.exception.JmxSecurityException: Caller <user id> not authorized, only role administrators is allowed to access JMX
at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.setIsModelOk(JmxModelCompInterface.java:2121)
Caused by: com.sap.engine.services.jmx.exception.JmxSecurityException: Caller <user id> not authorized, only role administrators is allowed to access JMX
at com.sap.engine.services.jmx.EngineAuthorization.checkMBeanPermission(EngineAuthorization.java:82)
at com.sap.engine.services.jmx.auth.UmeAuthorization.checkMBeanPermission(UmeAuthorization.java:77)
at com.sap.engine.services.jmx.JmxServerFrame.checkMBeanPermission(JmxServerFrame.java:98)
at com.sap.engine.services.jmx.MBeanServerSecurityWrapper.invoke(MBeanServerSecurityWrapper.java:286)
at com.sap.engine.services.jmx.ClusterInterceptor.invoke(ClusterInterceptor.java:776)
at com.sap.pj.jmx.server.interceptor.MBeanServerInterceptorChain.invoke(MBeanServerInterceptorChain.java:330)
at com.sap.security.core.jmx._gen.IJmxServer$Impl.getFeatureList(IJmxServer.java:622)
at com.sap.security.core.wd.jmxmodel.JmxModelCompInterface.supplyFeatureList(JmxModelCompInterface.java:1916)
... 91 more
Caused by: java.security.AccessControlException: access denied (javax.management.MBeanPermission -#getFeatureList[:SAP_J2EECluster="",j2eeType=UmeJmxServer,name=IJmxServer] invoke)
at java.security.AccessControlContext.checkPermission(AccessControlContext.java:269)
at java.security.AccessController.checkPermission(AccessController.java:401)
at com.sap.engine.services.jmx.EngineAuthorization.checkMBeanPermission(EngineAuthorization.java:66)
... 98 more
Read more...
Environment
- Netweaver AS Java 7.0x where User Administration Web Dynpro UIs are activated (see SAP note 869852)
- Netweaver AS Java 7.1x
- Netweaver AS Java 7.2x
- Netweaver AS Java 7.3x
Product
Keywords
KBA , BC-JAS-SEC-UME , User Management Engine , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.