IBM Support

PH57126: SAML IMPORTSAMLIDPMETADATA WSADMIN COMMAND MIGHT FAIL WITH NULLPOINTEREXCEPION ERROR

Subscribe to this APAR

By subscribing, you receive periodic emails alerting you to the status of the APAR, along with a link to the fix after it becomes available. You can track this item individually or track all items by product.

Notify me when this APAR changes.

Notify me when an APAR for this component changes.

 

APAR status

  • Closed as program error.

Error description

  • When the SAML importSAMLIdpMetadata wsadmin command is run
without an -ssoId parameter, the command might fail with a
NullPointerException error.  For example, this command:

AdminTask.importSAMLIdpMetadata('-idpMetadataFileName
c:\\metadata.xml -signingCertAlias alias1')

might produce this error:

com.ibm.websphere.management.cmdframework.CommandException:
java.lang.NullPointerException
	at com.ibm.ws.security.saml.admintask.SamlCommandProviderImpl.
importSAMLIdpMetadata(SamlCommandProviderImpl.java:187)
	at sun.reflect.NativeMethodAccessorImpl.invoke0(Native Method)
	at sun.reflect.NativeMethodAccessorImpl.invoke(NativeMethodAcc
essorImpl.java:90)
	at sun.reflect.DelegatingMethodAccessorImpl.invoke(DelegatingM
ethodAccessorImpl.java:55)
	at java.lang.reflect.Method.invoke(Method.java:508)
	at com.ibm.websphere.management.cmdframework.provider.SimpleCo
mmandProvider.executeReal(SimpleCommandProvider.java:156)
	......
	at com.ibm.ws.http.HttpConnection.readAndHandleRequest(HttpCon
nection.java:733)
	at com.ibm.ws.http.HttpConnection.run(HttpConnection.java:522)
	at com.ibm.ws.util.ThreadPool$Worker.run(ThreadPool.java:1909)
Caused by: java.lang.NullPointerException
	at com.ibm.ws.security.saml.admintask.SamlCommandProviderImpl.
isElementAlreadyExist(SamlCommandProviderImpl.java:1145)
	at com.ibm.ws.security.saml.admintask.SamlCommandProviderImpl.
importSAMLIdpMetadata(SamlCommandProviderImpl.java:142)
	... 40 more

Local fix

  • When you run the importSAMLIdpMetadata wsadmin command, add the
-ssoId parameter to the command.  For example:

AdminTask.importSAMLIdpMetadata('-idpMetadataFileName
c:\\metadata.xml -ssoId 1 -signingCertAlias alias1')

Problem summary

  • ****************************************************************
* USERS AFFECTED:  All users of IBM WebSphere Application      *
*                  Server                                      *
****************************************************************
* PROBLEM DESCRIPTION: SAML importSAMLIdpMetadata command      *
*                      emits                                   *
*                      an NPE when no -ssoId parameter is      *
*                      provided                                *
****************************************************************
* RECOMMENDATION:  Install a fix pack that contains this       *
*                  APAR.                                       *
****************************************************************
When the SAML importSAMLIdpMetadata wsadmin command is run
without an -ssoId parameter, the command emits a
java.lang.NullPointerException error.

Problem conclusion

  • The SAML importSAMLIdpMetadata command is updated to allow you
to not provide the -ssoId parameter.

The fix for this APAR is targeted for inclusion in fix packs
8.5.5.25 and 9.0.5.19 for more information, see 'Recommended
Updates for WebSphere Application Server':
https://www.ibm.com/support/pages/node/715553

Temporary fix

  • 



Comments


    

  • 



APAR Information




    

  • APAR number
    PH57126
    • 

  • Reported component name
    WEBS APP SERV N
    • 

  • Reported component ID
    5724H8800
    • 

  • Reported release
    900
    • 

  • Status
    CLOSED  PER
    • 

  • PE
    NoPE
    • 

  • HIPER
    NoHIPER
    • 

  • Special Attention
    NoSpecatt / Xsystem
    • 

  • Submitted date
    2023-09-22
    • 

  • Closed date
    2023-12-12
    • 

  • Last modified date
    2023-12-12
    • 





    

  • APAR is sysrouted FROM one or more of the following:
    

    • 

  • APAR is sysrouted TO one or more of the following:
    

    • 



Fix information


    

  • Fixed component name
    WEBS APP SERV N
    • 

  • Fixed component ID
    5724H8800
    • 



Applicable component levels


    








      
              
                            

              

              [{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"9.0","Line of Business":{"code":"LOB45","label":"Automation"}}]
              

                          

          
 
        

      

    

      

        

          

            
Document Information


            

            


                        

            Modified date:
            

            12 December 2023
            

            
                      

        


        

        


      

    

  



    

  

  
    
            

          
Page Feedback