Click HERE to see how Saviynt Intelligence is transforming the industry. |
04/18/2023 09:06 AM
Hello,
I have created a new child endpoint/Logical application for AD endpoint. When i am trying to request access to child endpoint, i am getting below error.
"userms","2023-04-18T15:55:01.972+00:00","2023-04-18T15:55:01.376843651Z stdout F 2023-04-18 15:55:01.376 ERROR [traceId=1c409366d322378d, spanId=1c409366d322378d, spanExportable=true, X-Span-Export=true, X-B3-SpanId=1c409366d322378d, TENANT_ID=DEFAULT, X-B3-TraceId=1c409366d322378d] 7 --- [http-nio-8480-exec-74] o.s.c.s.i.web.ExceptionLoggingFilter : Uncaught exception thrown|org.apache.catalina.connector.ClientAbortException: java.io.IOException: Broken pipe| at org.apache.catalina.connector.OutputBuffer.realWriteBytes(OutputBuffer.java:353) ~[tomcat-embed-core-9.0.54.jar!/:na]| at org.apache.catalina.connector.OutputBuffer.flushByteBuffer(OutputBuffer.java:783) ~[tomcat-embed-core-9.0.54.jar!/:na]| at org.apache.catalina.connector.OutputBuffer.append(OutputBuffer.java:688) ~[tomcat-embed-core-9.0.54.jar!/:na]| at org.apache.catalina.connector.OutputBuffer.writeBytes(OutputBuffer.java:388) ~[tomcat-embed-core-9.0.54.jar!/:na]| at org.apache.catalina.connector.OutputBuffer.write(OutputBuffer.java:366) ~[tomcat-embed-core-9.0.54.jar!/:na]| at org.apache.catalina.connector.CoyoteOutputStream.write(CoyoteOutputStream.java:96) ~[tomcat-embed-core-9.0.54.jar!/:na]|Caused by: java.io.IOException: Broken pipe| at java.base/sun.nio.ch.FileDispatcherImpl.write0(Native Method) ~[na:na]| at java.base/sun.nio.ch.SocketDispatcher.write(SocketDispatcher.java:47) ~[na:na]| at java.base/sun.nio.ch.IOUtil.writeFromNativeBuffer(IOUtil.java:113) ~[na:na]| at java.base/sun.nio.ch.IOUtil.write(IOUtil.java:79) ~[na:na]| at java.base/sun.nio.ch.IOUtil.write(IOUtil.java:50) ~[na:na]| at java.base/sun.nio.ch.SocketChannelImpl.write(SocketChannelImpl.java:462) ~[na:na]| "
"userms","2023-04-18T15:55:01.972+00:00","2023-04-18T15:55:01.606996138Z stdout F 2023-04-18 15:55:01.606 INFO [traceId=45863752f111bb38, spanId=45863752f111bb38, spanExportable=true, X-Span-Export=true, X-B3-SpanId=45863752f111bb38, TENANT_ID=DEFAULT, X-B3-TraceId=45863752f111bb38] 7 --- [http-nio-8480-exec-79] c.s.s.u.c.AuthAndAuthorizationController : fetchRequestMap call for sav roles [ROLE_ADMIN] "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3667443Z stdout F 2023-04-18 15:55:01.366 INFO [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : Get Request Form for Request 38 , User Sgade.ext "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3667758Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : Request received for API /request/access/{id}/request-form/{username} "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3667905Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : Id :38 "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3667943Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : Username : Sgade.ext "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3668047Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : AccountName : null "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3668079Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : AccessType : null "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3668145Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : EnterpriseRoleRequired : true "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.3668189Z stdout F 2023-04-18 15:55:01.366 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.c.RequestAccessController : Requested endpoint :: 38 "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.367254002Z stdout F 2023-04-18 15:55:01.367 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.saviynt.ssm.arsms.util.JwtTokenUtils : Inside getUsername() "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.367265302Z stdout F 2023-04-18 15:55:01.367 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.saviynt.ssm.arsms.util.JwtTokenUtils : Inside getToken() "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.367267602Z stdout F 2023-04-18 15:55:01.367 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.saviynt.ssm.arsms.util.JwtTokenUtils : Inside getAuthorizationHeader() "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.367462303Z stdout F 2023-04-18 15:55:01.367 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.saviynt.ssm.arsms.util.JwtTokenUtils : Logged in user :: Sgade.ext "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.367473503Z stdout F 2023-04-18 15:55:01.367 DEBUG [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.saviynt.ssm.arsms.util.JwtTokenUtils : Exit getUsername() "
"arsms","2023-04-18T15:55:01.508+00:00","2023-04-18T15:55:01.441382181Z stdout F 2023-04-18 15:55:01.441 ERROR [traceId=e0917c51f05f5d7c, spanId=e0917c51f05f5d7c, spanExportable=true, X-Span-Export=true, X-B3-SpanId=e0917c51f05f5d7c, TENANT_ID=DEFAULT, X-B3-TraceId=e0917c51f05f5d7c] 7 --- [http-nio-8787-exec-5] c.s.s.a.e.ControllerExceptionHandler : DATA-ACCESS-ERROR|org.springframework.orm.jpa.JpaSystemException: More than one row with the given identifier was found: 38, for class: com.saviynt.ssm.entity.EndpointsProperties; nested exception is org.hibernate.HibernateException: More than one row with the given identifier was found: 38, for class: com.saviynt.ssm.entity.EndpointsProperties| at org.springframework.orm.jpa.vendor.HibernateJpaDialect.convertHibernateAccessException(HibernateJpaDialect.java:352) ~[spring-orm-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]| at org.springframework.orm.jpa.vendor.HibernateJpaDialect.translateExceptionIfPossible(HibernateJpaDialect.java:254) ~[spring-orm-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]| at org.springframework.orm.jpa.AbstractEntityManagerFactoryBean.translateExceptionIfPossible(AbstractEntityManagerFactoryBean.java:528) ~[spring-orm-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]| at org.springframework.dao.support.ChainedPersistenceExceptionTranslator.translateExceptionIfPossible(ChainedPersistenceExceptionTranslator.java:61) ~[spring-tx-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]| at org.springframework.dao.support.DataAccessUtils.translateIfNecessary(DataAccessUtils.java:242) ~[spring-tx-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]| at org.springframework.dao.support.PersistenceExceptionTranslationInterceptor.invoke(PersistenceExceptionTranslationInterceptor.java:154) ~[spring-tx-5.1.19.RELEASE.jar!/:5.1.19.RELEASE]|Caused by: org.hibernate.HibernateException: More than one row with the given identifier was found: 38, for class: com.saviynt.ssm.entity.EndpointsProperties| at org.hibernate.loader.entity.AbstractEntityLoader.load(AbstractEntityLoader.java:90) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| at org.hibernate.loader.entity.EntityLoader.loadByUniqueKey(EntityLoader.java:144) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| at org.hibernate.persister.entity.AbstractEntityPersister.loadByUniqueKey(AbstractEntityPersister.java:2369) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| at org.hibernate.type.EntityType.loadByUniqueKey(EntityType.java:739) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| at org.hibernate.type.EntityType.resolve(EntityType.java:467) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| at org.hibernate.engine.internal.TwoPhaseLoad.doInitializeEntity(TwoPhaseLoad.java:205) ~[hibernate-core-5.3.18.Final.jar!/:5.3.18.Final]| "
04/18/2023 09:30 AM
Are you trying to request fresh AD account? or Entitlement request for logical app for an existing AD account. Screenshot signifies your logical app is not setup properly. Refer link for setting up Logical APP in AD connection
https://docs.saviyntcloud.com/bundle/KBAs/page/Content/Logical-Active-Directory-Applications.htm
04/18/2023 08:37 PM
We have existing AD Security system SS and Endpoint EPP. Now we have created new endpoint EPS manually and mapped EPP as parent endpoint. Add same endpoint filter at connection level.
Now when we are trying to request access giving database error.
04/18/2023 08:40 PM
share endpoint level config screenshot