IBM Support

With WebSphere session security integration enabled, the InfoSphere Information Server web console displays the HTTP 500 internal server error after successful logins

Troubleshooting


Problem

After the user enables WebSphere session integration security, the user logs into the InfoSphere Information Server web console, and the "HTTP 500 Internal Server Error" page is displayed.

Symptom

The WebSphere SystemOut.log has the following error message:

[9/13/11 16:02:34:288 EDT] 00000017 WASSessionCor E SessionContext checkSecurity SESN0008E: A user authenticated as anonymous has attempted to access a session owned by user:ASBRealm/b1c497ce.285feb.emuj2tlne.v53g1qn.fe17n0.i8dc8823ogo4j8647crmg00.
[9/13/11 16:02:34:288 EDT] 00000017 LocalTranCoor E WLTC0017E: Resources rolled back due to setRollbackOnly() being called.
[9/13/11 16:02:34:288 EDT] 00000017 webapp E com.ibm.ws.webcontainer.webapp.WebApp logServletError SRVE0293E: [Servlet Error]-[com.ascential.asb.web.root.index_jsp]: com.ibm.websphere.servlet.session.UnauthorizedSessionRequestException: SESN0008E: A user authenticated as {0} has attempted to access a session owned by {1}.(anonymous,user:ASBRealm/b1c497ce.285feb.emuj2tlne.v53g1qn.fe17n0.i8dc8823ogo4j8647crmg00)
at com.ibm.ws.session.SessionContext.checkSecurity(SessionContext.java:1297)
at com.ibm.ws.session.SessionContext.isValid(SessionContext.java:830)
at com.ibm.ws.webcontainer.srt.SRTRequestContext.getSession(SRTRequestContext.java:95)
at com.ibm.ws.webcontainer.srt.SRTServletRequest.getSession(SRTServletRequest.java:2099)
at com.ascential.asb.web.util.ASBAuthenticationFilter.setLocaleIfNeeded(ASBAuthenticationFilter.java:490)
at com.ascential.asb.web.util.ASBAuthenticationFilter.doFilter(ASBAuthenticationFilter.java:227)
at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:192)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:89)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:919)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1016)
at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:87)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:883)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1659)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:195)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:452)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:511)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:305)
at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:83)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1648)

Cause

Once the WebSphere session security integration is enabled, InfoSphere Information Server requires the authentication data to access its web page.

Diagnosing The Problem

Review the WebSphere log for the error shown in the symptom above.

Resolving The Problem

InfoSphere Information Server requires that WebSphere Application Server persists the subject information for unprotected URIs when the session security integration is enabled.

To enable "persist the subject information for unprotected URIs", from the WebSphere administrative console:

  1. Click Security > Global security > Web and SIP security to open the General settings panel.
  2. Select the Use available authentication data when an unprotected URI is accessed option.
  3. Click OK and save the change.
  4. Restart WebSphere Application Server.

[{"Product":{"code":"SSZJPZ","label":"IBM InfoSphere Information Server"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"--","Platform":[{"code":"PF002","label":"AIX"},{"code":"PF010","label":"HP-UX"},{"code":"PF016","label":"Linux"},{"code":"PF027","label":"Solaris"},{"code":"PF033","label":"Windows"}],"Version":"8.7","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]

Document Information

Modified date:
16 June 2018

UID

swg21515473