9.9 Troubleshooting

Your Novell® representative will work through any set up and configuration problems with you. In the meantime, here are a few things to try if you encounter problems.

Issue

Suggested Actions

You want to modify the User Application configuration settings made during installation. This includes configuration of such things as:

  • Identity Vault connections and certificates

  • E-mail settings

  • Metadirectory User Identity, User Groups

  • Access Manager or iChain® settings

Run the configuration utility independent of the installer.

On Linux and Solaris, run the following command from the installation directory (by default, /opt/novell/idm):

configupdate.sh

On Windows, run the following command from the installation directory (by default, c:\opt\novell\idm):

configupdate.bat

Exceptions are thrown when application server starts up, with a log message port 8080 already in use.

Shut down any instances of Tomcat (or other server software) that might already be running. If you decide to reconfigure the application server to use a port other than 8080, remember to edit the config settings for the User Application driver in iManager.

When the application server starts, you see a message that no trusted certificates were found.

Make sure that you start application server by using the JDK specified in the installation of the User Application.

You can’t log into the portal admin page.

Make sure that the User Application Administrator account exists. Don’t confuse this with your iManager admin account. They are two different admin objects (or should be).

You can log in as admin, but you can’t create new users.

The User Application Administrator must be a trustee of the top container and needs to have Supervisor rights. As a stopgap, you can try setting the User Application Administrator’s rights equivalent to the LDAP Administrator’s rights (using iManager).

When starting the application server, there are MySQL connection errors.

Don’t run as root. (This issue is unlikely if you are running the version of MySQL supplied with Identity Manager.)

Make sure MySQL is running (and that the correct copy is running). Kill any other instances of MySQL. Run /idm/mysql/start-mysql.sh, then /idm/start-jboss.sh.

Examine /idm/mysql/setup-mysql.sh in a text editor and correct any values that appear suspicious. Then run the script, and run /idm/start-jboss.sh.

You encounter keystore errors when starting the application server.

Your application server is not using the JDK specified at the installation of the User Application.

Use the keytool command to import the certificate file:

keytool -import -trustcacerts -alias aliasName -file certFile -keystore ..\lib\security\cacerts -storepass changeit
  • Replace aliasName with a unique name of your choice for this certificate.

  • Replace certFile with the full path and name of your certificate file.

  • The default keystore password is changeit (if you have a different password, specify it).

E-mail notification was not sent.

Run the configupdate utility to check whether you supplied values for the following User Application configuration parameters: E-Mail From and E-Mail Host.

On Linux or Solaris, run this command from the installation directory (by default, /opt/novell/idm):

configupdate.sh

On Windows, run this command from the installation directory (by default, c:\opt\novell\idm):

configupdate.bat