security - IIB - BIP4761E: 消息流尝试使用“SecurityProfiles”策略

问题描述

我正在尝试在IBM App Connect v11.0.0.6中的 Pet Store REST API 上设置 LDAP Auth为了做到这一点，我遵循了本指南：

为 LDAP 创建安全配置文件

我从我的“宠物”REST API 中制作了一个 BAR 文件，将策略部署到同一个集成节点，然后在流属性中尝试选择我的 ldapPolicy 但它不存在。当我手动输入并部署时，我最终遇到了这个错误：

Begin running task [Deploying [pet.bar] to integration server [InteriorIntegration]]

The BAR file C:/WorkDir/workspace/pet/pet.bar has been deployed to InteriorIntegration but there were one or more failures which may mean the deployed resources will be unable to execute. 

The following message was received:

BIP9339W: The values defined in the policy(s) 'ldapPolicy' in policy project 'ldapTest' match the values of the existing policy(s). Any deployed resources using the policy(s) will not be affected by the redeploy of the policy project. 
BIP4761E: The message flow attempted to use 'SecurityProfiles' policy 'ldapPolicy', which has not been defined in the integration server. 
BIP9320E: Message Flow 'gen.pet', 'gen.pet' encountered a failure and could not start. 
BIP4761E: The message flow attempted to use 'SecurityProfiles' policy 'ldapPolicy', which has not been defined in the integration server. 
BIP4761E: The message flow attempted to use 'SecurityProfiles' policy 'ldapPolicy', which has not been defined in the integration server. 
BIP9320E: Message Flow 'gen.pet', 'gen.pet' encountered a failure and could not start. 
BIP4761E: The message flow attempted to use 'SecurityProfiles' policy 'ldapPolicy', which has not been defined in the integration server. 
BIP9333W: RestAPI 'pet' has been changed but contains errors which has prevented some resources from starting. 
BIP1096E: The source 'pet.bar' has been deployed but there were one or more failures which may mean the deployed resources will be unable to execute. 

The task did not complete successfully: The deployment was partially successful. Check error messages for explanation.

这是我的策略 XML：

<?xml version="1.0" encoding="UTF-8"?>
<policies>
  <policy policyType="SecurityProfiles" policyName="ldapPolicy" policyTemplate="SecurityProfiles">
    <authentication>LDAP</authentication>
    <authenticationConfig>ldap://example.com:389/ou=example</authenticationConfig>
    <mapping>NONE</mapping>
    <mappingConfig></mappingConfig>
    <authorization>LDAP</authorization>
    <authorizationConfig>ldap://example.com:389/ou=example</authorizationConfig>
    <propagation>false</propagation>
    <idToPropagateToTransport>Message ID</idToPropagateToTransport>
    <transportPropagationConfig></transportPropagationConfig>
    <keyStore>Reserved for future use</keyStore>
    <trustStore>Reserved for future use</trustStore>
    <passwordValue>PLAIN</passwordValue>
    <rejectBlankpassword>true</rejectBlankpassword>
  </policy>
</policies>

我错过了什么？

笔记：

BIP9339W: The values defined in the policy(s) 'ldapPolicy' in policy project 'ldapTest' match the values of the existing policy(s). Any deployed resources using the policy(s) will not be affected by the redeploy of the policy project. 

编辑： 我认为发生上述错误是因为 ldapTest 已经部署（？）。如果是这样，那么为什么我不能在安全配置文件下拉列表中选择此策略？

来自事件日志的错误：

( Int01.InteriorIntegration ) The message flow attempted to use ''SecurityProfiles'' policy ''ldapPolicy'', which has not been defined in the integration server.   

Policies need to be set on the integration server. Use the administrative REST API to check that a '''SecurityProfiles'' policy called ''ldapPolicy' exists.   

Use the toolkit to create the required policy and deploy it to the integration server, or adjust the message flow to avoid requiring the policy.  

标签： securityibm-integration-bus