AEM 6.4 Anonymous user _ everyone group _ access rights issue | Adobe Higher Education
Skip to main content
M
Mayur_1
Level 2
November 15, 2018
해결됨

AEM 6.4 Anonymous user _ everyone group _ access rights issue

  • November 15, 2018
  • 5 답변들
  • 3405 조회

Hi AEM Community,

We are facing a very typical issue. On our AEM 6.4 publish instances.

Content pages stop loading abruptly. While investigating further over the issue we come to know, anonymous users permissions are vanished.

We restored them manually. Again in sometime (@20 to 40 hrs)  we are seeing similar issue and looking further seeing somehow 'everyone' group's access rights are compromised (are removed somehow).

On strange note - this issue is happening frequently on random Publish server (we have 4 publish serves in a topology in 2 different zones globally - US & EU D.C.)

This issue is preventing us to cutover from AEM 6.2 to 6.4

Has anyone come across such issue ?

이 주제는 답변이 닫혔습니다.
최고의 답변: Mayur_1

Seems Adobe Product team has recognized the issue and ported fix for it, into SP2. We are going to apply and further verify for same.

However sharing it's details here too - it may be helpful for other over AEM forum/community.

AEM 6.4.2.0 Release Notes  ( URL - ttps://helpx.adobe.com/experience-manager/6-4/release-notes/sp-release-notes.html  )

- Remove default MERGE_PRESERVE aclHandling. NPR-24593: Hotfix for Granite-21889

5 답변

smacdonald2008
smacdonald2008
Level 10
November 15, 2018

Are you seeing any message in Log file?  I have never heard of user permissions disappearing - this is a very strange.

M
Mayur_1작성자
Level 2
November 16, 2018

While doing more checking from our end - we could find a below scenario

1) We choose a random user

/home/users/anyuser/M...xxxxxxxxxxxxxxxx

2) replicate it from Author

3) Check replication log (on USPubx)

Replication successful.

4)load the CRX DE for anonymous users (on USPubx)

CRX DE is showing only / (root) path but not other paths.

5)Now, restart the AEM 6.4 (USPubx) instance.

Restart brings back the anoymous user read permissions but also adds /home path.

/

bin

content

crx

etc

home

META-INF

The /home also exposes

/home/groups and

/home/users

along with all child nodes.

That's the matter of concern from security stand point.

smacdonald2008
smacdonald2008
Level 10
November 16, 2018

I talked to customer support about this. They saw this behaviour in older version. They asked you to open a support ticket as you may need to get a hotfix for this issue. 

M
Mayur_1작성자
Level 2
November 16, 2018

Thanks for your inputs & efforts to look into this.

Certainly with our Adobe account channel we are in communication with Product support, now, to get appropriate fix for the issue.

M
Mayur_1작성자답변
Level 2
November 20, 2018

Seems Adobe Product team has recognized the issue and ported fix for it, into SP2. We are going to apply and further verify for same.

However sharing it's details here too - it may be helpful for other over AEM forum/community.

AEM 6.4.2.0 Release Notes  ( URL - ttps://helpx.adobe.com/experience-manager/6-4/release-notes/sp-release-notes.html  )

- Remove default MERGE_PRESERVE aclHandling. NPR-24593: Hotfix for Granite-21889

약관 및 조건Accessibility statement

Loading footer...