SAP Knowledge Base Article - Preview

3312483 - Diagnostics Agent Connection Error "javax.naming.NamingException: Exception while trying to get InitialContext. [Root exception is java.lang.securityException: User 'Guest' is not authorised." - SAP Solution Manager 7.2

Symptom

You have upgraded to Solution Manager 7.2  or you implemented the SAP Security Note 3268093 - [CVE-2023-0017] "Improper access control in SAP NetWeaver AS for Java".

When you try to register the Diangostics Agent to Solution manager by running the SMDSetup script :

      • "./smdsetup.sh managingconf hostname:"sapms://<solman.full.qual.host.name>" port:"<50xx>"

The Script (Registration process) is ending up on the following error :

java.lang.IllegalArgumentException: SAPInst parameter 'user' is empty.

      • at com.sap.smd.setup.SetupTask.getParameter(SetupTask.java:339)
      • at com.sap.smd.setup.SetupMaintenance.executeManagingConfUpdate(SetupMaintenance.java:526)
      • at com.sap.smd.setup.SetupMaintenance.executeTasks(SetupMaintenance.java:211)
      • at com.sap.smd.setup.SetupMaintenance.main(SetupMaintenance.java:60)

The Diagnostics Agent you try to connect also does not appear in the Non-authenticated Agent tab of the Agent Administration and you notice the below error in the SMDSystem.log:

[EXCEPTION]

javax.naming.NamingException: Exception while trying to get InitialContext. [Root exception is java.lang.SecurityException: User 'Guest' is not authorized.]

      • at com.sap.engine.services.jndi.InitialContextFactoryImpl.getInitialContext(InitialContextFactoryImpl.java:386)
      • ...
      • at com.sap.smd.agent.connection.SMDConnectionTask.attemptConnection(SMDConnectionTask.java:92)

Note: Already trusted agents, i.e., the agents in the Connected Agents tab seems not affected, because they use certificate-based authentication.

Note: Same problem occurs when re-connecting an agent from another Solution Manager.


Read more...

Environment

  • SAP Solution Manager 7.2
  • SAP Netweaver Application Server 7.50 SP25

Product

SAP Solution Manager 7.2

Keywords

JNDI, NamingException, Non-authenticated , KBA , SV-SMG-DIA-SRV-AGT , Agent Framework , SV-SMG-INS-AGT , Installation of Solution Manager Diagnostics Agent , Known Error

About this page

This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).

Search for additional results

Visit SAP Support Portal's SAP Notes and KBA Search.