On the Virtual Appliance, the connector from IG to IM is not working

Document ID : KB000047013
Last Modified Date : 14/02/2018
Show Technical Document Details

Issue: 

On Virtual Appliance, when trying to create a connector from IG to IM and testing the connection, the test fails.

The log shows:

" ERROR [com.ca.clientconnection.WebServiceHandler] (default task-16) WebServiceHandler.getWSConfigurationJSON:  Failed to get configuration from IM for: Failed to get configuration from IM: Unauthorized: com.ca.clientconnection.clientapi.ClientConnectionException: Failed to get configuration from IM: Unauthorized"

 

Environment:  

CA Identity Suite Virtual Appliance 12.6 SP8 CR1

 

Cause: 

Due to the Wildfly 8.2 Application Server security mechanism, the application server attempts to authorize the request and denies it since the superAdmin credentials provided in the request are not valid as application server credentials

 

Workaround:

  1. Log into the Virtual Appliance shell as user 'config'.
  2. Run the command: sudo /opt/CA/wildfly-idm/bin/add-user.sh
  3. Add the SuperAdmin account (imadmin) as an Application User with no groups to belong to and no Remoting connection for server to server EJB calls.

 

Additional Information:

This scenario is also valid when Identity Manager 12.6 SP8 is installed on Widlfy 8.2.0