Appian Community
Site
Search
Sign In/Register
Site
Search
User
DISCUSS
LEARN
SUCCESS
SUPPORT
Documentation
AppMarket
More
Cancel
I'm looking for ...
State
Not Answered
Replies
4 replies
Subscribers
9 subscribers
Views
1468 views
Users
0 members are here
Share
More
Cancel
Related Discussions
Home
»
Discussions
»
General
We shutdown both Appian engine and jboss due to our oracle database patch.
scho
over 10 years ago
We shutdown both Appian engine and jboss due to our oracle database patch.
After the patch is done, we restarted Egine and JBoss to start Appian. After Appian is up again, we've started getting these permission errors from mulitple processes.
===================================================================================================
Problem: The user does not have privilege to the process that the activity attempted to start.
Details:
Recommended Action: The process is not started, and this node cannot complete. Please start the next node if necessary.
Priority of this problem: High Priority
===================================================================================================
It is a simple fix as we need to change the script to 'run as whoever designed this process model' instead of 'run as whoever started the proess'
The question is we didnt have this error before and all of sudden we are getting it from lots of in-f...
OriginalPostID-129782
OriginalPostID-129782
Discussion posts and replies are publicly visible
0
scho
over 10 years ago
...light processes now. We havnt deployed any new processes during the shutdown. Have you seen this behavior? and any idea what would cause this?
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
Mike Cichy
Appian Employee
over 10 years ago
Has the deployment service account been deactivated?
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
scho
over 10 years ago
No. All the other service accounts are still active.
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel
0
Eduardo Fuentes
Appian Employee
over 10 years ago
If this is expected based on your knowledge about the security of the process model then this is definitely something that has to be fixed since it indicates an issue with the design of the model.
What you want to review is if there are other process instances that completed fine in the past, if you have those then you review who started the process and check if they lacked privileges, most likely they didn't and that's why until now when the users without privileges try to start that sub-process they get that error.
The fact that you see this after the restart looks more like a coincidence, there's nothing in a restart that can change something that is expected to happen according to the design of the model; assuming that what you got was a set of emails they could be queued emails whose alerts you had already received and went unnoticed because of the queued emails.
If after the restart you got both the alerts and the emails then that means that it was until that time when these sub-processes were attempted to be started.
In general there's more investigation that you will need to perform, including any changes in group membership for users; if someone removed a rule from a group or removed users from a group privileges can be now more restrictive making this to happen; I suggest you do not center the investigation in the restart.
Cancel
Vote Up
0
Vote Down
Sign in to reply
Verify Answer
Cancel