UCCX8 - custom Java classes connecting to another machine

Answered Question
Aug 18th, 2010
User Badges:

we're now migrating to CUCCX8 (which is appliance) and we have some custom classes that we're invoking from CRS editor. We've upload our JAR into Document Management, set Custom File Configuration, restarted engine.. This part is functioning properly.
Through this jar and CRS editor we want to connect to our Java server which runs on other (Windows machine). Problem occurs here, some security issues are appearing, this is stack trace:
%MIVR-SECURITY_MGR-2-SECURITY_VIOLATION:Security violation: Permission Name=modifyThreadGroup,Permission Action=,Application=TestScrApp,Script=Test.aef,Step id=10,Step Class=com.cisco.wfframework.obj.WFBeanStep,Step Description=........
2818: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION:java.security.AccessControlException: access denied (java.lang.RuntimePermission modifyThreadGroup)
2819: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.security.AccessControlContext.checkPermission(AccessControlContext.java:323)
2820: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.security.AccessController.checkPermission(AccessController.java:546)
2821: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.lang.SecurityManager.checkPermission(SecurityManager.java:532)
2822: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at com.cisco.security.impl.JavaSecurityManager.checkPermission(JavaSecurityManager.java:327)
2823: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at com.cisco.security.impl.JavaSecurityManager.checkAccess(JavaSecurityManager.java:291)
2824: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.lang.ThreadGroup.checkAccess(ThreadGroup.java:288)
2825: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.lang.Thread.init(Thread.java:332)
2826: Aug 17 15:24:17.457 CEST %MIVR-SECURITY_MGR-2-EXCEPTION: at java.lang.Thread.<init>(Thread.java:377)

Is there any way we can set this to go through, set some parameters according to Java, security, did anyone meet these problems...?

Thanks in advance,

Correct Answer by frzhang about 6 years 10 months ago

This might be related to the defect CSCti50428. Open a TAC case to apply the workaround.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
ortiz Wed, 09/01/2010 - 15:23
User Badges:

Hi Ivana, did you get this to work?  If so, how?

ivana.begonja Thu, 09/02/2010 - 00:47
User Badges:

No, we still haven't figure this out. Any suggestions would be great.

Now what are we trying to do is to make them communicate through SOAP messages - does anyone have some experience according to this?

Thanks in advance!

Correct Answer
frzhang Thu, 09/02/2010 - 10:03
User Badges:
  • Cisco Employee,

This might be related to the defect CSCti50428. Open a TAC case to apply the workaround.

ivana.begonja Thu, 09/16/2010 - 07:05
User Badges:


thank you for this suggestion, we've opened TAC case, they replaced security policy file on our UCCX and now everything is working fine (we can connect to another Windows server - and our Java server running here).
lohjintiam Tue, 09/04/2012 - 11:43
User Badges:

Hi all,

Is this workaround expect to address all java permission related issues?



cndilip123 Mon, 09/06/2010 - 02:26
User Badges:

When you say Java Server what do you mean - application server like Tomcat?

Are you able to Execute and test your custom classes through console/command line (instead of using it through CRS editor)? You can develop a  static main class that calls the custom class on the CRS server itself.

This will isolate if it is Java itself or something on the CRS.



ivana.begonja Mon, 09/06/2010 - 04:05
User Badges:

No, this is something what is working with previous versions of CRS, and also we can test our classes locally.

What I meant to say is we have client-server communication, through CRS we try to run our client (multithreaded client) and this error occurs when it'is opening socket on other (Windows) machine.

salman.adil Sun, 07/10/2011 - 22:54
User Badges:


I am also facing similar kind of issue. I have some custom file which is reading an xml present inside the same jar file, and I am getting following exception

java.lang.Exception: java.security.AccessControlException: access denied (java.io.FilePermission DIRECTORYNAME read); nested exception is:

java.lang.Exception: java.lang.Exception: java.security.AccessControlEception: access denied (java.io.FilePermission DIRECTORYNAME read)

Editor Version is 802. jar files are uploaded and added to classpath!

any clue or solution?


This Discussion