/support/notes/service/sap_logo.png){kind=logo}
SAP Knowledge Base Article - PreviewSymptom
- The portal issues an error message on screen, indicating a Portal Runtime Error has occurred, and referring to the portal logs. In most cases the browser message indicates that the problem is related to the security zone. The console log and/or the relevant log also record a message that indicates that the problem is related to the security zone.
- During a penetration test on the Enterprise Portal system, the report highlighted security issues, including the need to restrict access to sensitive pages due to incorrect permission settings granting unnecessary access, and excessively low permissions posing security risks.
- Upon checking the defaultTrace file, the following exception is found:
[EXCEPTION]
com.sapportals.portal.prt.runtime.PortalRuntimeException: Access is denied: com.sap.portal.runtime.system.console.Go - user
at com.sap.portal.prt.core.PortalSecurityManager.checkPermissions(PortalSecurityManager.java:141)
at com.sap.portal.prt.core.PortalSecurityManager.checkPermissions(PortalSecurityManager.java:71)
(...)
Caused by: com.sapportals.portal.pcd.gl.PermissionControlException: Access denied (Object(s): com.sap.portal.system/security/sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/Go)
at com.sapportals.portal.pcd.gl.PcdPersContext.filteredLookup(PcdPersContext.java:792)
Read more...
Environment
- SAP NetWeaver Application Server Java
- SAP Enterprise Portal
Product
Keywords
root cause, root, cause, permission, access, no_safety, safety zone, zone, safety, pcd, prt, runtime, unauthenticated, Access is denied, com.sap.portal.runtime.system.console.Go, Access denied (Object(s): com.sap.portal.system/security/sap.com/NetWeaver.Portal/high_safety/com.sap.portal.runtime.system.console/components/Go), com.sapportals.portal.pcd.gl.PermissionControlException, com.sapportals.portal.prt.runtime.PortalRuntimeException, Penetration Test, security risk , KBA , EP-PIN-SEC-PER , Portal content ACL permissions (Roles, Pages...) , EP-PIN-PRT , Portal Runtime , Problem
About this page
This is a preview of a SAP Knowledge Base Article. Click more to access the full version on SAP for Me (Login required).Search for additional results
Visit SAP Support Portal's SAP Notes and KBA Search.
/support/notes/service/twitter.svg)
/support/notes/service/youtube.svg)
/support/notes/service/linkedin.svg)
/support/notes/service/instagram2.svg)