cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

missing roles for service user PIAF

Go to solution
Former Member

on ‎06-18-2013 12:13 PM

0 Kudos

Hi PI community,

we have PI AEX 7.31 SP4 running, and we see a lot error entries in log caused by the service user for the Advanced Adapter Engine PIAF<SID> user like:

User does not have access rights to invoke the bean method

Thrown:

java.rmi.AccessException: javax.ejb.EJBAccessException: ASJ.ejb.005045 (Failed in component: sap.com/com.sap.xi.directory, BC-XI-IBC) ASJ.ejb.003001 Principal: PIAF<SID> (authentication method: password), policyContextID: sap.com/com.sap.xi.directory*com.sap.xpi.ib.server.jar, permission.name: AuthorizationBean, permission.actions: isConfigurator,Remote,

I checked the role of the PIAF<SID> user in our system, it has only two roles:

SAP_XI_APPL_SERV_USER

SAP_SLD_CONFIGURATOR

According to the SAP help Standard Users (AEX) http://help.sap.com/saphelp_nw73ehp1/helpdata/DE/5a/262466578e4436abe2ace36b6287b9/frameset.htm, this user has default four roles:

SAP_XI_AF_SERV_USER_MAIN

SAP_BC_WEBSERVICE_PI_CFG_SRV

SAP_XI_APPL_SERV_USER

SAP_SLD_CONFIGURATOR

But the two roles SAP_XI_AF_SERV_USER_MAIN and SAP_BC_WEBSERVICE_PI_CFG_SRV are in our system not available. Do we miss any wizard which should run after the installation? How can we generate the standard role  SAP_XI_AF_SERV_USER_MAIN, SAP_BC_WEBSERVICE_PI_CFG_SRV and SAP_XI_RWB_SERV_USER_MAIN?

Thanks for any input.

Dingjun

Show replies
Show replies
Answer

Accepted Solutions (1)

Accepted Solutions (1)

marksmyth
Product and Topic Expert
Product and Topic Expert
‎06-18-2013 5:23 PM
0 Kudos

Hello Dingjun,

This looks like a known issue which is resolved with note 1821676 Additional log for ejb access exception. Check if you are on lower patches and if yes, update to the latest available.

Regards

Mark

Show replies
Show replies
Former Member
‎06-19-2013 7:34 AM
0 Kudos

Hello Mark,

thanks a lot for the information.

The error mentioned in the note 1821676 is:

"javax.ejb.EJBAccessException: ASJ.ejb.005045 (Failed in component:sap.com/com.sap.xi.repository, BC-XI-IBD) ASJ.ejb.003001 Principal: (authentication method: password), policyContextID:

sap.com/com.sap.xi.repository*com.sap.xpi.ib.server.jar, permission.name:AuthorizationBean"

And the error we got is:

javax.ejb.EJBAccessException: ASJ.ejb.005045 (Failed in component: sap.com/com.sap.xi.directory, BC-XI-IBC) ASJ.ejb.003001 Principal: PIAF<SID> (authentication method: password), policyContextID: sap.com/com.sap.xi.directory*com.sap.xpi.ib.server.jar, permission.name: AuthorizationBean

So we should take the patch for XI TOOLS 7.31.

How can we make the standard roles SAP_XI_AF_SERV_USER_MAIN and SAP_BC_WEBSERVICE_PI_CFG_SRV available?

Or the two roles mentioned in SAP help for PI 7.31 http://help.sap.com/saphelp_nw73ehp1/helpdata/DE/5a/262466578e4436abe2ace36b6287b9/frameset.html are not updated?

Thanks and regards

Dingjun

marksmyth
Product and Topic Expert
Product and Topic Expert
‎06-19-2013 4:41 PM
0 Kudos

Hi Dingjun,

This same EJB trace entry occurs for several different PI application areas and several PI* users. Not all are documented in the note. The note will fix this for all cases. So, yes, you should go ahead and apply the patch.

Regards

Mark

Answers (0)

Ask a Question