Symptom
An extra security layer is being implemented by explicitly informing the client hosts which are allowed to logon to the message server.
The required configuration is performed according to SAP Help Portal - Security Settings for the SAP Message Server
At the end, the configuration seems not to work as expected and previously allowed hosts are being denied from access.
In the message server trace file (dev_ms), the following entries can be seen:
[Thr <nr] load acl file = /usr/sap/<SID>/SYS/global/ms_acl_info [Thr <nr] *** ERROR => HOST invalid argument (<nr>.<nr>.<nr>.*) in line 10 [msxxacl.c 774] [Thr <nr] *** WARNING => Errors found in /usr/sap/<SID>/SYS/global/ms_acl_info [Thr <nr] *** WARNING => Please correct the invalid entry |
Or
Thr <nr> load acl file = D:\usr\sap\<SID>\SYS\global\ms_acl_info.DAT |
Read more...
Environment
- Message server security
- Configuring additional security layer
- Access Control List settings
- Operating System independent
- Database independent
- SAP NetWeaver
- SAP Web Application Server for SAP S/4HANA
- ABAP Platform
Product
Keywords
MSEACCESSDENIED, host denied, dev_ms, /usr/sap/<SID>/SYS/global/ms_acl_info, HOST invalid argument, Errors found in /usr/sap/<SID>/SYS/global/ms_acl_info, NiPGetHostByName, NiHLGetNodeAddr, NIEHOST_UNKNOWN, wild card character, invalidated, /etc/hosts, host name, HOST,LOG Q0I,.DAT , KBA , BC-CST-MS , Message Service , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.