This chapter lists common error messages from OpenAM, with remedial actions where possible.
Common Authentication Errors
- An error occurred while storing the user profile.
-
When using the Membership module, the attributes and elements likely do not match the self-registration settings in the
Membership.xml
file.Action: Enter a unique user name.
- A user already exists with this name in the given organization.
-
When using the Membership module, you cannot create a new user with the same user name as an existing user.
Action: Enter a unique user name.
- Authentication Exception
-
The authentication was not handled properly.
Action: Check the login URL for invalid characters, especially in the query string parameters.
- Authentication Failed
-
Usually this occurs when the user provides incorrect credentials.
Action: If the credentials are valid and correct, check that you are using the correct authentication module.
- Cannot redirect to default page
-
OpenAM cannot redirect to the Success URL or the Failure URL.
Action: Check the web application container logs where OpenAM is running.
- Invalid Password
-
The password is not valid.
Action: If you have not incorrectly typed the password, check that the password has at least 8 characters, and has not expired.
- Logout Failure
-
The user cannot log out.
Action: Restart OpenAM.
- Maximum Session Limit was reached
-
Action: Logout and login again.
- Missing the confirmation password field.
-
When using the Membership module to create a user account, you must confirm the password value.
Action: Enter a the password again.
- No password was entered
-
When using the Membership module to create a user account, you must enter a password.
Action: Enter a password.
- No user name was entered
-
When using the Membership module to create a user account, you must enter a user name.
Action: Enter a user name.
- No user profile was found matching the entered user name in the given organization.
-
When using the Membership module, no profile exists for the user.
Action: Select New User from the login screen.
- No configuration found
-
Action: Check the configuration for the authentication module or chain for the realm.
- No organization found
-
Action: Check that the requested realm exists.
- One of the required fields was not completed.
-
Action: Check for missing required fields.
- Specified authentication module is denied.
-
Action: Check that the authentication module is registered in the realm, that templates are in place for the module, and that the module is selected in the Core Authentication module list.
- This organization is not active
-
The requested realm is set to Inactive.
Action: Change the status in OpenAM Console.
- The password and the confirm password do not match.
-
Error shown when using the Membership module.
Action: Type the password values again.
- The password entered does not contain enough characters.
-
When using the Membership module, the password provided has fewer than 8 characters.
Action: Enter a longer password.
- The User Name and Password fields cannot have the same value.
-
When using the Membership module, you cannot create a user with identical user name and password values.
Action: Use a different user name or password.
- User has no profile in the specified organization.
-
Action: Check that the user exists in the subjects for the realm.
- User is not active
-
Action: Change the user status from inactive to active in OpenAM console.
- User session has timed out.
-
Action: Log in again.
- You are already logged in
-
No Success URL redirect is defined for the user.
Action: Set up an appropriate Success URL redirect, or use the
goto
parameter in the login URL query string.
Common Console Errors
- Could not create identity object. User does not have sufficient access.
-
Permissions prevented the operation.
Action: Perform the operation as a user with sufficient access, or have an administrator grant you sufficient access.
- Invalid user's start location. Please contact your administrator.
-
The Administrator DN is no longer valid.
Action: Edit the User service to use the proper value for the Administrator DN.
- Size limit exceeded.
-
Your search returned more entries that the data store allows.
Action: Refine your search, or increase Maximum Results Returned from a Search in the Administration service.
- Time limit exceeded.
-
Your search took more time to search the data store than was allowed.
Action: Refine your search, or increase Timeout for Search in the Administration Service.
- There are no attributes to display.
-
No user-editable attributes are defined for the selected object.
- There are no entities.
-
What you are searching for did not match anything in the data store.
Action: Refine your search.
- Unable to get attribute from data store.
-
Occurs when a profile has been modified concurrently by another user.
Action: Refresh the display.