IBM Support

With WebSphere session security integration enabled, the InfoSphere Information Server web console displays the HTTP 500 internal server error after successful logins

Technote (troubleshooting)


Problem(Abstract)

After the user enables WebSphere session integration security, the user logs into the InfoSphere Information Server web console, and the "HTTP 500 Internal Server Error" page is displayed.

Symptom

The WebSphere SystemOut.log has the following error message:

[9/13/11 16:02:34:288 EDT] 00000017 WASSessionCor E SessionContext checkSecurity SESN0008E: A user authenticated as anonymous has attempted to access a session owned by user:ASBRealm/b1c497ce.285feb.emuj2tlne.v53g1qn.fe17n0.i8dc8823ogo4j8647crmg00.
[9/13/11 16:02:34:288 EDT] 00000017 LocalTranCoor E WLTC0017E: Resources rolled back due to setRollbackOnly() being called.
[9/13/11 16:02:34:288 EDT] 00000017 webapp E com.ibm.ws.webcontainer.webapp.WebApp logServletError SRVE0293E: [Servlet Error]-[com.ascential.asb.web.root.index_jsp]: com.ibm.websphere.servlet.session.UnauthorizedSessionRequestException: SESN0008E: A user authenticated as {0} has attempted to access a session owned by {1}.(anonymous,user:ASBRealm/b1c497ce.285feb.emuj2tlne.v53g1qn.fe17n0.i8dc8823ogo4j8647crmg00)
at com.ibm.ws.session.SessionContext.checkSecurity(SessionContext.java:1297)
at com.ibm.ws.session.SessionContext.isValid(SessionContext.java:830)
at com.ibm.ws.webcontainer.srt.SRTRequestContext.getSession(SRTRequestContext.java:95)
at com.ibm.ws.webcontainer.srt.SRTServletRequest.getSession(SRTServletRequest.java:2099)
at com.ascential.asb.web.util.ASBAuthenticationFilter.setLocaleIfNeeded(ASBAuthenticationFilter.java:490)
at com.ascential.asb.web.util.ASBAuthenticationFilter.doFilter(ASBAuthenticationFilter.java:227)
at com.ibm.ws.webcontainer.filter.FilterInstanceWrapper.doFilter(FilterInstanceWrapper.java:192)
at com.ibm.ws.webcontainer.filter.WebAppFilterChain.doFilter(WebAppFilterChain.java:89)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.doFilter(WebAppFilterManager.java:919)
at com.ibm.ws.webcontainer.filter.WebAppFilterManager.invokeFilters(WebAppFilterManager.java:1016)
at com.ibm.ws.webcontainer.servlet.CacheServletWrapper.handleRequest(CacheServletWrapper.java:87)
at com.ibm.ws.webcontainer.WebContainer.handleRequest(WebContainer.java:883)
at com.ibm.ws.webcontainer.WSWebContainer.handleRequest(WSWebContainer.java:1659)
at com.ibm.ws.webcontainer.channel.WCChannelLink.ready(WCChannelLink.java:195)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleDiscrimination(HttpInboundLink.java:452)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.handleNewRequest(HttpInboundLink.java:511)
at com.ibm.ws.http.channel.inbound.impl.HttpInboundLink.processRequest(HttpInboundLink.java:305)
at com.ibm.ws.http.channel.inbound.impl.HttpICLReadCallback.complete(HttpICLReadCallback.java:83)
at com.ibm.ws.tcp.channel.impl.AioReadCompletionListener.futureCompleted(AioReadCompletionListener.java:165)
at com.ibm.io.async.AbstractAsyncFuture.invokeCallback(AbstractAsyncFuture.java:217)
at com.ibm.io.async.AsyncChannelFuture.fireCompletionActions(AsyncChannelFuture.java:161)
at com.ibm.io.async.AsyncFuture.completed(AsyncFuture.java:138)
at com.ibm.io.async.ResultHandler.complete(ResultHandler.java:204)
at com.ibm.io.async.ResultHandler.runEventProcessingLoop(ResultHandler.java:775)
at com.ibm.io.async.ResultHandler$2.run(ResultHandler.java:905)
at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1648)



Cause

Once the WebSphere session security integration is enabled, InfoSphere Information Server requires the authentication data to access its web page.

Diagnosing the problem

Review the WebSphere log for the error shown in the symptom above.

Resolving the problem

InfoSphere Information Server requires that WebSphere Application Server persists the subject information for unprotected URIs when the session security integration is enabled.


To enable "persist the subject information for unprotected URIs", from the WebSphere administrative console:

  1. Click Security > Global security > Web and SIP security to open the General settings panel.
  2. Select the Use available authentication data when an unprotected URI is accessed option.
  3. Click OK and save the change.
  4. Restart WebSphere Application Server.

Document information

More support for: InfoSphere Information Server

Software version: 8.7

Operating system(s): AIX, HP-UX, Linux, Solaris, Windows

Reference #: 1515473

Modified date: 25 October 2011


Translate this page: