When we try to start the managed server from nodemanager, we get the following error.
<BEA-090064> <The DeployableAuthorizer “myrealm_weblogic.security.providers.xacml.authorization.XACMLAuthorizationProviderImpl” returned an error: weblogic.security.spi.ResourceCreationException: [Security:090310]Failed to create resource.>
This errror comes because the managed server ldap server (slave) is not in sync with the Admin Server ldap server ( master).
To overcome this issue we can use two very important configurations.
Refresh Replica at Startup and Master First.
Master First ensures managed server always connect to the ldap server of the admin server.
Refresh Replica at startup ensures that whenever managed server is restarted, it takes the latest ldap data from the admin server.